Projects and Tools
Welcome to My Cybersecurity Projects!
Welcome to my projects page, where I showcase my collection of interactive tools. As a cybersecurity enthusiast, I believe in the power of hands-on learning and practical applications.
Here, you’ll find various tools that cover essential concepts such as password security, data encoding, and the importance of input validation. Each project is crafted to not only demonstrate key cybersecurity principles but also to showcase my skillset and lastly provide you with a fun and informative experience.
Feel free to explore, test your knowledge, and learn how these tools can enhance your understanding of cybersecurity. Your feedback is always welcome, as I continuously strive to improve and expand this collection.
Thank you for visiting, and happy exploring!
Here I have integrated a password strength checker and generator.
Password Generator
Generated Password:
Password Strength Meter
See below a simple XSS Tester (Cross-Site Scripting Sandbox)
Try:
<div style="color: red;">This text is injected via XSS!</div>
<img src="invalid.jpg" onerror="alert('This is an XSS attack!');">
<button onmouseover="alert('Mouse over button - XSS!')">Hover over me!</button>
<div onclick="alert('XSS triggered!')">Click me!</div>
XSS Tester
How the Sandbox Works:
• The tool is set up to allow user input to be processed and displayed on the page without any sanitisation. This is intentional to simulate how real-world XSS vulnerabilities occur when inputs are not properly validated or escaped.
• The sandbox only affects the specific area where the input is displayed (inside the tool) and does not impact other parts of my website.
Is my Website Vulnerable to XSS?
In this case, my website is not vulnerable to XSS attacks just because I included this tool. Here’s why:
1. Controlled Environment: The XSS tester is isolated in its own HTML block. Users can only input and test payloads within this specific tool, not on my entire website.
2. No Impact on Rest of Site: The code is designed so that the input affects only the designated output area of the XSS tester (inside the sandbox). It doesn’t allow any harmful code to spread outside of this testing area.
3. Educational Tool: This is purely for educational purposes to demonstrate how XSS works. However in the case of Blackhat / non ethical hackers who aren’t bound by law or purpose and may look to exploit a XSS Vulnerability- this has therefore been isolated within a controlled sandbox environment.
Important Points:
• Sandbox: The tool I’ve added is a sandboxed environment that does not introduce XSS vulnerabilities site-wide. It’s designed to safely contain XSS attempts within the testing space created.
• Security Practices: When it comes to site handling user input (e.g., forms or comments), you should always sanitise and validate user input to prevent real-world XSS vulnerabilities.
For a fun tool to show how the ROT13 Cipher is applied see below. This showcases a simple substitution cipher used for basic obfuscation of text by shifting letters 13 positions in the alphabet.
ROT13 Cipher
Result:
