Netflix has announced the open source release of its cross-site scripting (XSS) payload management framework: Sleepy Puppy.
Sleepy Puppy is helping the Netflix security team identify XSS propagation through a number of systems even when those systems aren’t assessed directly.
“We hope that the open source community can find new and interesting uses for Sleepy Puppy, and use it to simplify their XSS testing and improve remediation times,” the company said.
Sleepy Puppy is available on Netflix’s GitHub site. A full description of Sleepy Puppy is available here.