45 packages tagged with “xss”
Cleans HTML from constructs that can be used for cross-site scripting (XSS)
Security static code analyzer for .NET
Cleans HTML from constructs that can be used for cross site scripting (XSS) Net Core 3.1
Roslyn analyzers that aim to help security audits on .NET applications.
Rule based HTML sanitizer using a white list. Use it to cleanup HTML and removing malicious content.
Stand-alone .NET tool for https://security-code-scan.github.io
Abp.HtmlSanitizer
Middleware that applies security-related HTTP headers to an OWIN pipeline. See OWASP List https://www.owasp.org/index.php/List_of_useful_HTTP_headers CSP2 implementation according to: http://www.w3.org/TR/CSP2/
Adds the X-XSS-Protection header to each response with text/html media type.
Contains a rich set of security-related middlewares for ASP.NET Core with strongly-typed configuration.
Security static code analyzer for .NET; released under custom name to check if it works in VS2022
Support for Content Security Policy for ASP.NET applications. New in version 1.0.10 - Full support for the 1.0 version of CSP. Includes some breaking config changes in preparation for the 1.0. "options" is no longer available. The options have now been moved to allowedScriptSources unsafeAllowEval and unsafeAllowInline allowedXhrSources is now allowedConnectSources.
.Net core Middleware, Add various headers to help secure your site. Disable XSS attacks with Content Security Policies, and make sure browsers do not mime sniff
Takes untrusted (X)HTML and massages it into real, trusted XHTML. While plenty of effort goes into preserving the original intent, markup validity and safety is the first priority. It's particularly useful with content management systems where users are in control of markup, but you want to target XHTML1.1.
A library to prevent xss for WebApi
ProceXSS is a Asp.NET Http module for preventing xss attacks.
Security static code analyzer for .NET based on Security Code Scan
Middlewares to help secure your apps
Policy-based filter html to avoid XSS attacks; support dotnet core and dotnet framework
A Javascript library to warn your users aginst Self XSS attacks in browser console.
Package Description
A sanitizer to remove elements and attributes from SGML based text files, such as HTML and XML. Note that this is a very simple implementation, but by using whitelists and a naïve URL detection implementation XSS may be prevented. Use at your own risk though.
anti xss mvc model binder policy
KVR Injection Tests
Middleware to sanitize HTTP headers and JSON request bodies
Xss Filters (xss-filters) binding library for Bridge.NET projects.
Stand-alone .NET tool for DotnetariumSCS based on Security Code Scan