Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/s0md3v/XSStrike

Most advanced XSS scanner.
https://github.com/s0md3v/XSStrike

waf-detection xss xss-bruteforce xss-detection xss-exploit xss-python xss-scanner xsstrike

Last synced: 6 days ago
JSON representation

Most advanced XSS scanner.

Host: GitHub
URL: https://github.com/s0md3v/XSStrike
Owner: s0md3v
License: gpl-3.0
Created: 2017-06-26T07:24:44.000Z (over 7 years ago)
Default Branch: master
Last Pushed: 2024-03-22T10:38:50.000Z (8 months ago)
Last Synced: 2024-05-22T23:46:40.475Z (5 months ago)
Topics: waf-detection, xss, xss-bruteforce, xss-detection, xss-exploit, xss-python, xss-scanner, xsstrike
Language: Python
Homepage:
Size: 1.14 MB
Stars: 12,774
Watchers: 273
Forks: 1,852
Open Issues: 82
Metadata Files:
- Readme: README.md
- Changelog: CHANGELOG.md
- License: LICENSE

Awesome Lists containing this project

awesome-bbht - XSStrike - Most advanced XSS scanner. (Exploitation / XSS)
awesome-bbht - XSStrike - Most advanced XSS scanner. (Exploitation / XSS)
awesome-python-applications - Repo - site_scripting) (XSS) detection suite equipped with multiple hand-written parsers, a payload generator, a fuzzing engine, and a performance-focused crawler. `(console)` (<a id="tag-dev" href="#tag-dev">Dev</a> / <a id="tag-dev.security" href="#tag-dev.security">Security</a>)
awesome-bugbounty-tools - XSStrike - Most advanced XSS scanner. (Exploitation / XSS Injection)
awesome-rainmana - s0md3v/XSStrike - Most advanced XSS scanner. (Python)
awesome-starts - s0md3v/XSStrike - Most advanced XSS scanner. (Python)
WebHackersWeapons - XSStrike
awesome-python-applications - Repo - site_scripting) (XSS) detection suite equipped with multiple hand-written parsers, a payload generator, a fuzzing engine, and a performance-focused crawler. `(console)` (<a id="tag-dev" href="#tag-dev">Dev</a> / <a id="tag-dev.security" href="#tag-dev.security">Security</a>)
awesome-termux-hacking - XSStrike - Most advanced XSS scanner..[![->](https://img.shields.io/github/stars/s0md3v/XSStrike.svg?style=social&label=Star&maxAge=2592000)](https://github.com/s0md3v/XSStrike/stargazers/) (Uncategorized / Uncategorized)
awesome-hacking-lists - s0md3v/XSStrike - Most advanced XSS scanner. (Python)

README

XSStrike

Advanced XSS Detection Suite

![multi xss](https://image.ibb.co/gOCV5L/Screenshot-2018-11-19-13-33-49.png)

XSStrike Wiki •
Usage •
FAQ •
For Developers •
Compatibility •
Gallery

XSStrike is a Cross Site Scripting detection suite equipped with four hand written parsers, an intelligent payload generator, a powerful fuzzing engine and an incredibly fast crawler.

Instead of injecting payloads and checking it works like all the other tools do, XSStrike analyses the response with multiple parsers and then crafts payloads that are guaranteed to work by context analysis integrated with a fuzzing engine.
Here are some examples of the payloads generated by XSStrike:
```
}]};(confirm)()//\
z
z