Featured vector

IE 11.0
<a href="/0x30fcgoogle.com" id="fuzzelement1">asdf</a> <script> if(document.getElementById('fuzzelement1').hostname=="google.com") { alert(1); } </script>

Fuzz vector cloud

5,453,920 Successful fuzzes

Shazzer

User information

Username Points
@garethheyes 256
Vectors created
Array variables
Attribute separators
Characters allowed after asterix in CSS comments
Characters allowed after attribute name
Characters allowed after colon in url
Characters allowed after colon in url (no slashes)
Characters allowed after paren rule
Characters allowed after script
Characters allowed after slash
Characters allowed after slash in url
Characters allowed as gt in url
Characters allowed as h in http
Characters allowed as lt in url
Characters allowed as s in url
Characters allowed as slash in url
Characters allowed as vbscript variables
Characters allowed as _ in url
Characters allowed before a JavaScript function
Characters allowed before attribute name
Characters allowed before colon in js url
Characters allowed before CSS properties
Characters allowed before paren
Characters allowed before protocol in js url
Characters allowed before slashes no protocol
Characters allowed between slashes
Characters allowed inside http
Characters allowed inside slashes no protocol
Characters allowed instead of colon in js url
Characters allowed instead of forward slash in url
Characters allowed instead of slash
Characters allowed instead of slash 2
Characters before img
Characters before paren in Javascript call
Characters before rgb
Characters before script
Characters between rgb
Characters ignored in Javascript function call with unicode
Characters ignored in Javascript function call with unicode 2
Characters in between protocol in js url
Characters not encoded with encodeURI
Characters not encoded with encodeURIComponent
Characters separating attributes without quotes
Characters separating attributes without quotes after hash
Characters that are new lines
Characters that are spaces
Characters that break out of css urls latest
Characters that break out of script variables
Characters that close a HTML comment
Characters that close JS Comments
Characters that trigger a new attr after new line
Characters transformed in expando attributes
Cookie fuzzing
digits
Document body variables
Document variables
Does this browser support e4x
Easter challenge min sequence
Easter challenge min sequence 2
Eating backslash
Entities allowed after js protocol
Entities allowed before CSS rule
Entities allowed before js protocol
Entities allowed inside js protocol
Entities allowed with no semi colon
Events in tags with src or href that execute javascript
Expandos attributes characters removed
Function variables
Hex characters allowed after asterix in CSS comments
Iframe contentDocument properties
Iframe contentWindow properties
incorrect innerHTML serialization
is my browser leaking location
JS Property check ending character
JS Property check middle character
new lines
NULL Characters inside JavaScript properties
Number variables
Object variables
Opening paren expression check
Quoteless attributes breaker
Regexp variables
Single characters that break attribute names
spaces
String variables
SVG script
Tags and events that execute javascript
Tags and events that execute javascript 2
Tags that execute onerror
Tags that have the onload event
Valid characters after expression
Valid characters after expression 2
Valid characters after expression 3
Valid characters after expression 4
Window variables