XSS-Easy-Start is a beginner-friendly vulnerable lab designed to help newcomers explore various types of Cross-Site Scripting (XSS) vulnerabilities. This environment allows you to practice exploiting the following XSS types:
- Reflected XSS
- Stored XSS
- Blind XSS
- DOM XSS
Clone the repository and navigate to the project directory:
git clone https://github.com/Sourabh-Sahu/XSS-Easy-Start.git
cd XSS-Easy-Start
Move the project files to your web server's root directory (e.g., /var/www/html
).
Setting up the Database:
-
Import
xss_db.sql
into MySQL Database:mysql -u username -ppassword < xss_db.sql
-
Configure the database credentials in
db.php
andadminprofile.php
files.
Setting up the upload directory permissions:
chmod 757 upload
For a quick setup using Docker, follow these steps:
-
Pull the Docker image from Docker Hub:
docker pull sourabhs4hu/xss-easy-start:v1
-
Run the Docker container, mapping port 80 of the container to your host's port 80:
docker run -d -p 80:80 sourabhs4hu/xss-easy-start:v1