XSS Vulnerability Scanner

概要

The XSS Vulnerability Scanner skill empowers Claude to proactively detect security flaws within your HTML, JavaScript, CSS, and URL contexts. By leveraging context-aware analysis and WAF bypass testing, it identifies potential exploit vectors and suggests safe proof-of-concept payloads to validate risks. This skill is essential for developers and security auditors looking to automate vulnerability discovery during code reviews or before deploying web applications to production, ensuring resilience against common web-based attack vectors.

主な機能

• Detects reflected, stored, and DOM-based XSS vulnerabilities
• Provides detailed remediation guidance and safe proof-of-concept payloads
• Analyzes HTML, JavaScript, CSS, and URL parameters for context-aware risks
• Triggers instantly via '/xss' shortcut or natural language requests
• 884 GitHub stars
• Includes bypass testing logic for Web Application Firewalls (WAF)

ユースケース

• Validating the effectiveness of existing Content Security Policies (CSP)
• Reviewing code during the PR process to ensure proper input sanitization
• Performing comprehensive security audits of web forms and search functionalities