Security Test - Clean Controls

Collector Log

Payloads in the Live Output column run automatically in sandboxed iframes. Fetch and beacon calls appear here (auto-refreshes every 2 s).

Waiting for hits…
Clean Controls Security Test Cases
Case Name Payload Expected Behavior Live Output
I1 Normal page and safe link 
<p>Normal page with a safe <a href="/about">About</a> link.</p>
 Crawler output should preserve harmless content without treating it as a threat.
I2 Word script in plain text 
The word script appears in plain text and should not be treated as code.
 Crawler output should not flag plain text just because it contains the word script.
I3 Real image 
<img src="/media/pixel.jpg" alt="Real image test">
 Crawler output should allow ordinary image references when rendered safely.
I4 document.cookie inside code block 
<code>document.cookie</code> appears as documentation only.
 Crawler output should display code text without executing or over-blocking it.

Back to crawl test home