Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/mandatoryprogrammer/xsshunter_client
Correlated injection proxy tool for XSS Hunter
https://github.com/mandatoryprogrammer/xsshunter_client
Last synced: about 1 month ago
JSON representation
Correlated injection proxy tool for XSS Hunter
- Host: GitHub
- URL: https://github.com/mandatoryprogrammer/xsshunter_client
- Owner: mandatoryprogrammer
- Created: 2016-03-03T01:19:57.000Z (almost 9 years ago)
- Default Branch: master
- Last Pushed: 2022-12-26T20:02:41.000Z (almost 2 years ago)
- Last Synced: 2024-08-01T10:17:13.728Z (4 months ago)
- Language: Python
- Size: 18.6 KB
- Stars: 248
- Watchers: 8
- Forks: 59
- Open Issues: 13
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
- awesome-bugbounty-tools - xsshunter_client - Correlated injection proxy tool for XSS Hunter (Exploitation / XSS Injection)
README
# XSS Hunter Client
## What is the this tool for?
This tool can be used to generate correlated XSS payloads, these payloads are tagged with a unique ID which can be used to track which HTTP request caused which XSS payload to fire. By using this tool all of your injection attempts are tracked and the reports you generate will have the responsible injection attempt included in the final output. This is useful since XSS payloads can often traverse multiple services (and even protocols) before firing, so it's not always clear what injection caused a certain XSS payload to fire.## Setup
1. Create an XSS Hunter account at https://xsshunter.com/
2. Create a new virtual environment by running `virtualenv env`
3. Source the newly created enviroment by running `source env/bin/activate`
4. Install the required libraries by running `pip install -r requirements.txt`
5. Run the config generation tool `./generate_config.py` and follow the steps mentioned.
6. Now run mitmproxy with this client as an inline script: `mitmproxy -s mitm_xsshunter.py -p 1234`
7. Proxy your browser through this new tool, keep in mind that you may have to [install the mitmproxy certificate authority](http://docs.mitmproxy.org/en/stable/certinstall.html) if you have not done so already.## Using the XSS Hunter Client
Using the client is simple, during the config generation you will set a list of *dummy words*, these are special strings which will be replaced upon being seen by the proxy tool. For example, one rule could have the dummy word be `https://example.com` with the `javascript:` URI payload selected. Once the proxy sees `https://example.com` in the request it will automatically replace it with the `javascript:` URI payload. It is **very important** that you choose a unique dummy word that is unlikely to appear regularly in the request, else you risk scattering your payloads where you don't want them.