Characters allowed in between start of HTML tag name and event handler
<a$[chr]id="test">
document.getElementById('test') && log(i)
<a0x09id="test">
<a id="test">
<a0x0Cid="test">
<a0x0Did="test">
<a/id="test">
6
6
6
6