Cross Site Scripting (XSS) Challenges.

Learn to secure your applications by solving XSS challenges.

See the full course overview >
Hacking Websites With Cross-Site Scripting

Learn the basics of XSS attacks.

3 challenges

Unlock with XSS:Full Access
XSS Attacks From HTML Attributes

Learn how to launch XSS attacks when injecting into HTML attributes.

3 challenges

Unlock with XSS:Full Access
XSS Attacks From URLs

Learn how to launch XSS attacks when adding a URL for website links.

2 challenges

Unlock with XSS:Full Access
XSS Filter Evasion

Learn how to launch XSS attacks while evading filters and defenses.

2 challenges

Unlock with XSS:Full Access
How To Use Event Handlers For XSS Exploits

Learn how to create XSS exploits using event handlers.

3 challenges

Unlock with XSS:Full Access
XSS Attacks Inside JavaScript

Learn how XSS attacks work when injecting directly into JavaScript.

4 challenges

Unlock with XSS:Full Access
Polyglots: The Ultimate XSS Payloads

Learn to execute XSS attacks in any context with just one payload.

1 challenges

Unlock with XSS:Full Access
How To Create Real XSS Exploits To Attack Websites

Learn how to create real, malicious XSS exploits.

3 challenges

Unlock with XSS:Full Access
How To Fix XSS Vulnerabilities In Code

Learn how to bulletproof your code against dangerous inputs with proper escaping.

3 challenges

Unlock with XSS:Full Access
How To Allow Safe HTML Injection

Learn how to safely let users add their own HTML tags without introducing XSS vulnerabilities.

2 challenges

Unlock with XSS:Full Access
How To Prevent XSS With Code Reviews

Learn how to stop XSS vulnerabilities before they're released.

3 challenges

Unlock with XSS:Full Access
Automatic XSS Prevention

Learn how to automatically stop XSS attacks with Content Security Policy and Subresource Integrity.

3 challenges

Unlock with XSS:Full Access
Exploiting Web Pages That Have A CSP

Learn what threats still exist even after implementing a Content Security Policy.

2 challenges

Unlock with XSS:Full Access

Just $65/user for XSS Full Access

Less than the price of one XSS bounty!

In-depth and hands-on XSS training The most accurate and complete XSS training course available Constant updates on the latest attacks and defenses

UPGRADE MY SKILLS UPGRADE MY TEAM