Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/s0md3v/XSStrike
Most advanced XSS scanner.
https://github.com/s0md3v/XSStrike
waf-detection xss xss-bruteforce xss-detection xss-exploit xss-python xss-scanner xsstrike
Last synced: about 1 month ago
JSON representation
Most advanced XSS scanner.
- Host: GitHub
- URL: https://github.com/s0md3v/XSStrike
- Owner: s0md3v
- License: gpl-3.0
- Created: 2017-06-26T07:24:44.000Z (over 7 years ago)
- Default Branch: master
- Last Pushed: 2024-03-22T10:38:50.000Z (9 months ago)
- Last Synced: 2024-05-22T23:46:40.475Z (7 months ago)
- Topics: waf-detection, xss, xss-bruteforce, xss-detection, xss-exploit, xss-python, xss-scanner, xsstrike
- Language: Python
- Homepage:
- Size: 1.14 MB
- Stars: 12,774
- Watchers: 273
- Forks: 1,852
- Open Issues: 82
-
Metadata Files:
- Readme: README.md
- Changelog: CHANGELOG.md
- License: LICENSE
Awesome Lists containing this project
- awesome-bbht - XSStrike - Most advanced XSS scanner. (Exploitation / XSS)
- awesome-bbht - XSStrike - Most advanced XSS scanner. (Exploitation / XSS)
- awesome-python-applications - Repo - site_scripting) (XSS) detection suite equipped with multiple hand-written parsers, a payload generator, a fuzzing engine, and a performance-focused crawler. `(console)` (<a id="tag-dev" href="#tag-dev">Dev</a> / <a id="tag-dev.security" href="#tag-dev.security">Security</a>)
- awesome-bugbounty-tools - XSStrike - Most advanced XSS scanner. (Exploitation / XSS Injection)
- awesome-rainmana - s0md3v/XSStrike - Most advanced XSS scanner. (Python)
- awesome-starts - s0md3v/XSStrike - Most advanced XSS scanner. (Python)
- WebHackersWeapons - XSStrike
- awesome-python-applications - Repo - site_scripting) (XSS) detection suite equipped with multiple hand-written parsers, a payload generator, a fuzzing engine, and a performance-focused crawler. `(console)` (<a id="tag-dev" href="#tag-dev">Dev</a> / <a id="tag-dev.security" href="#tag-dev.security">Security</a>)
- awesome-termux-hacking - XSStrike - Most advanced XSS scanner..[![->](https://img.shields.io/github/stars/s0md3v/XSStrike.svg?style=social&label=Star&maxAge=2592000)](https://github.com/s0md3v/XSStrike/stargazers/) (Uncategorized / Uncategorized)
- awesome-hacking-lists - s0md3v/XSStrike - Most advanced XSS scanner. (Python)
README
XSStrike
Advanced XSS Detection Suite
![multi xss](https://image.ibb.co/gOCV5L/Screenshot-2018-11-19-13-33-49.png)
XSStrike Wiki •
Usage •
FAQ •
For Developers •
Compatibility •
GalleryXSStrike is a Cross Site Scripting detection suite equipped with four hand written parsers, an intelligent payload generator, a powerful fuzzing engine and an incredibly fast crawler.
Instead of injecting payloads and checking it works like all the other tools do, XSStrike analyses the response with multiple parsers and then crafts payloads that are guaranteed to work by context analysis integrated with a fuzzing engine.
Here are some examples of the payloads generated by XSStrike:
```
}]};(confirm)()//\
z
z