Displaying 1 to 12 from 12 results

sanitize-html - Clean up user-submitted HTML, preserving whitelisted elements and whitelisted attributes on a per-element basis

  •    Javascript

Clean up user-submitted HTML, preserving whitelisted elements and whitelisted attributes on a per-element basis

DOMPurify - DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG

  •    Javascript

DOMPurify is a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. It's written in JavaScript and works in all modern browsers (Safari, Opera (15+), Internet Explorer (10+), Firefox and Chrome - as well as almost anything else using Blink or WebKit). DOMPurify is written by security people who have vast background in web attacks and XSS. Fear not.

HtmlSanitizer - Cleans HTML to avoid XSS attacks

  •    CSharp

HtmlSanitizer is a .NET library for cleaning HTML fragments and documents from constructs that can lead to XSS attacks. It uses AngleSharp to parse, manipulate, and render HTML and CSS. Because HtmlSanitizer is based on a robust HTML parser it can also shield you from deliberate or accidental "tag poisoning" where invalid HTML in one fragment can corrupt the whole document leading to broken layout or style.

ember-purify - Purify your html content before marking it safe

  •    Javascript

When you need to render user provided HTML content but don't want to trust the user content with Ember's Ember.String.htmlSafe or {{{ }}}. Uses DOMPurify to sanitize HTML & SVG. I strongly recommend you watch the video linked under the inspiration section. See XSS in action in Ember in this twiddle. You can also run ember serve to see the above mentioned approaches along with the purify-dom helper. Inspect the DOM on all three broken images to see the difference.




mongoose-sanitizer - Mongoose Sanitizer Plugin

  •    Javascript

Simple plugin for Mongoose that sainitizes document fields before saving them. Makes use of Google Caja's HTML Sanitizer to perform the sanitization. When saving a document generated with MyMongooseSchema, mongoose-sanitizer will automatically iterate over every field, sanitizing them before storage in the database.

node-caja-sanitizer - Port of the google html sanitizer library

  •    Javascript

Port of the google caja html sanitizer library. I'm NOT overwriting the original caja sanitize call because.

rust-san - How-to: Sanitize your Rust code!

  •    Rust

Note that sanitizer support is available on x86_64 Linux and on x86_64 macOS (ASan and TSan only). Where $SAN is one of address, leak, memory or thread.


marked-sanitizer-github - A sanitizer for marked

  •    TypeScript

marked-sanitizer-github provides a sanitizer to sanitize HTML elements in Markdown documents. The implementation was ported from html-pipeline. marked provides sanitization by default. But it does not allow any HTML elements and escapes all of them in a parsing Markdown document. By using marked-sanitizer-github, some safe HTML elements are available.

honggfuzz-rs - Fuzz your Rust code with Google-developped Honggfuzz !

  •    Rust

Honggfuzz is a security oriented fuzzer with powerful analysis options. Supports evolutionary, feedback-driven fuzzing based on code coverage (software- and hardware-based).

markdown-it-sanitizer - sanitizer for markdown-it.

  •    Javascript

sanitizer plugin for markdown-it markdown parser. All tags are parsed case insensitive.

jPurify - jPurify

  •    Javascript

Warning: This tool is experimental and currently not maintained. Don't use it in production. jPurify is a plugin that automatically adds XSS-safety to jQuery. The reason why we do that is jQuery's lack of DOMXSS protection. We wanted to create a jQuery plugin, that adds super-easy-to-use and fully automatic HTML sanitation to the whole jQuery API. jPurify has been tested with jQuery 1.11.1 and 2.1.1. It's known to work well down until jQuery 1.5.2.