DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
-
Updated
Jul 11, 2026 - JavaScript
Sanitizing is a process to check and remove harmful data from user input. It prevents XSS (Cross Site Scripting) attacks.
DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
Rust newtype with guarantees 🇺🇦 🦀
Academic papers related to fuzzing, binary analysis, and exploit dev, which I want to read or have already read
Easy-to-add enhancements for any C/C++ CMake project. Including AFL fuzzing, code-coverage, Thread/Address/Leak/Address/Undefined sanitizer instrumentation, compilation of GLSL shaders and more.
Use DOMPurify on server and client in the same way
Fuzz your Rust code with Google-developed Honggfuzz !
Make it safe to serve untrusted SVG files
A general-purpose CMake library that provides functions that improve the CMake experience following the best practices.
C++ project template with unit-tests, documentation, ci-testing and workflows.
Project moved to: https://github.com/llvm/llvm-project
Lean C/C++ Bounds Checking with Low-Fat Pointers
Custom memory allocator that helps discover reads from uninitialized memory
Fast JavaScript HTML Sanitizer, client-side (i.e. needs a browser, won't work in Node and other backend)
This repository is a collection of JavaScript gadgets that can be used to bypass XSS mitigations such as Content Security Policy (CSP) and HTML sanitizers like DOMPurify.
Study notes about LLVM. LLVM 学习笔记. Licensed under CC BY-NC-SA 4.0
A library that removes common unicode confusables/homoglyphs from strings.