mirror of
https://github.com/hahwul/WebHackersWeapons.git
synced 2024-10-01 01:25:58 -04:00
8.9 KiB
8.9 KiB
Tools for xss
Type | Name | Description | Star | Tags | Badges |
---|---|---|---|---|---|
Scanner | DOMPurify | DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo: | xss |
||
Scanner | findom-xss | A fast DOM based XSS vulnerability scanner with simplicity. | xss |
||
Scanner | Chromium-based-XSS-Taint-Tracking | Cyclops is a web browser with XSS detection feature, it is chromium-based xss detection that used to find the flows from a source to a sink. | xss |
||
Scanner | dalfox | 🌘🦊 DalFox(Finder Of XSS) / Parameter Analysis and XSS Scanning tool based on golang | xss |
||
Scanner | XSpear | Powerfull XSS Scanning and Parameter analysis tool&gem | xss |
||
Scanner | XSStrike | Most advanced XSS scanner. | xss |
||
Scanner | xsser | Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications. | xss |
||
Scanner | xsscrapy | XSS/SQLi spider. Give it a URL and it'll test every link it finds for XSS and some SQLi. | xss |
||
Scanner | domdig | DOM XSS scanner for Single Page Applications | xss |
||
Exploit | beef | The Browser Exploitation Framework Project | xss |
||
Exploit | toxssin | An XSS exploitation command-line interface and payload generator. | xss |
||
Utils | eval_villain | A Firefox Web Extension to improve the discovery of DOM XSS. | xss |
||
Utils | weaponised-XSS-payloads | XSS payloads designed to turn alert(1) into P1 | xss documents |
||
Utils | blistener | Blind-XSS listener with payloads | xss blind-xss |
||
Utils | gxss | Blind XSS service alerting over slack or email | xss blind-xss |
||
Utils | jsfuck | Write any JavaScript with 6 Characters | xss |
||
Utils | docem | Uility to embed XXE and XSS payloads in docx,odt,pptx,etc (OXML_XEE on steroids) | xxe xss |
||
Utils | hbxss | Security test tool for Blind XSS | xss blind-xss |
||
Utils | ezXSS | ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting. | xss blind-xss |
||
Utils | xss-cheatsheet-data | This repository contains all the XSS cheatsheet data to allow contributions from the community. | xss |
||
Utils | XSS-Catcher | Find blind XSS but why not gather data while you're at it. | xss blind-xss |
||
Utils | xless | The Serverless Blind XSS App | xss blind-xss |
||
Utils | xssor2 | XSS'OR - Hack with JavaScript. | xss |