XSScape is a web-based tool designed to help bug bounty hunters and ethical hackers encode Cross-Site Scripting (XSS) payloads to bypass common security filters.
- HTML Entity Encoding: Converts characters to HTML entities (e.g.
<to<) - HTML Decimal Encoding: Encodes each character in decimal HTML format (e.g.
AtoA) - URL Encoding: Uses URL-encoded format (e.g.
%20) - Base64 Encoding: Converts the payload to a Base64-encoded string
- Hexadecimal Encoding: Encodes each character as hexadecimal (e.g.
Ato%41) - Unicode Encoding: Uses Unicode escape sequences (e.g.
Ato\u0041)
XSScape is intended strictly for ethical security testing, such as authorized bug bounty programs and penetration testing assignments. Unauthorized use, including use for malicious purposes, is prohibited and may be illegal.