XSS Payload Tester (Sandboxed)

Safely test Cross-Site Scripting (XSS) payloads in an isolated environment.

Enter XSS Payload (HTML/JavaScript)

Important Security Notice: This tool uses a sandboxed iframe to mitigate risks, but exercise caution. Do not use sensitive data or real credentials. Malicious payloads could still cause unexpected behavior or browser issues.

Payload:

Payload Output (Sandboxed)

The payload will be rendered above. If an `alert()` or similar function is called, it should appear within this sandboxed frame.