XSS(Cross Site Scripting)
Cross-site scripting (XSS) is a type of computer security vulnerability typically found in web applications. XSS enables attackers to inject client-side script into web pages viewed by other users. A cross-site scripting vulnerability may be used by attackers to bypass access controls such as the same-origin policy. There are many commercial as well as open-source tools to scan applications for XSS vulnerability. Sleepy Puppy is a new addition to the list, featuring some advanced options.
Advanced Features Of Sleepy Puppy
SleepyPuppy Is available at Netflix's GitHub Repository
XSS is still a challenge despite being one of the most common web application vulnerabilities for more than a decade. XSS can be prevented by adopting preventive methods like contextual output encoding/escaping of string input, cookie security, proper Content Security Policy, disabling scripts etc.
Suggested Reading : Critical XSS Vulnerability In PayPal Steals User Credentials.