Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/theinfosecguy/QuickXSS
Automating XSS using Bash
https://github.com/theinfosecguy/QuickXSS
bash-script bugbounty hacktoberfest hacktoberfest2021 xss xss-detection xss-vulnerability
Last synced: 21 days ago
JSON representation
Automating XSS using Bash
- Host: GitHub
- URL: https://github.com/theinfosecguy/QuickXSS
- Owner: theinfosecguy
- License: mit
- Created: 2020-11-13T13:49:48.000Z (about 4 years ago)
- Default Branch: main
- Last Pushed: 2024-03-22T14:21:16.000Z (9 months ago)
- Last Synced: 2024-11-12T11:46:06.987Z (30 days ago)
- Topics: bash-script, bugbounty, hacktoberfest, hacktoberfest2021, xss, xss-detection, xss-vulnerability
- Language: Shell
- Homepage:
- Size: 29.3 KB
- Stars: 349
- Watchers: 9
- Forks: 62
- Open Issues: 1
-
Metadata Files:
- Readme: README.md
- Funding: .github/FUNDING.yml
- License: LICENSE
Awesome Lists containing this project
- awesome-hacking-lists - theinfosecguy/QuickXSS - Automating XSS using Bash (Shell)
README
QuickXSS - Automate your XSS workflow
_**Read Official Guide: https://www.bugblogs.tech/post/automating-xss-using-dalfox-gf-and-waybackurls**_
Bash Script to Automate XSS using Waybackurls, GF, GF Patterns and Dalfox.
Here are their Repositories:
1. [GF](https://github.com/tomnomnom/gf)
2. [GF Patterns](https://github.com/1ndianl33t/Gf-Patterns)
3. [Dalfox](https://github.com/hahwul/dalfox)
4. [Waybackurls](https://github.com/tomnomnom/waybackurls)
5. [Gau](https://github.com/lc/gau)## Pre-Requisites
Install Go in your Machine and then install required Tools.
For installing Go in your system:
```
sudo apt install -y golang
export GOROOT=/usr/lib/go
export GOPATH=$HOME/go
export PATH=$GOPATH/bin:$GOROOT/bin:$PATH
source .bashrc
```
## Install Tools in one go !```
chmod +x install.sh
./install.sh
```## Docker support
```bash
# for build docker image
$ docker build --tag quickxss .
# run docker image
$ docker run -it --rm --name qs quickxss
# Set alias to ~/.zshrc or ~/.bashrc ( depend which shell you are using ) will help to global execute quickxss
$ alias quickxss='docker run -it --rm --name qs quickxss'
```### For Installing Pre-Requisites (In case you want to do it one by one):
```
go get -u github.com/tomnomnom/gf
go get github.com/tomnomnom/waybackurls
GO111MODULE=on go get -v github.com/hahwul/dalfox/v2
GO111MODULE=on go get -u -v github.com/lc/gau
mkdir .gf
cp -r $GOPATH/src/github.com/tomnomnom/gf/examples ~/.gf
git clone https://github.com/1ndianl33t/Gf-Patterns
mv ~/Gf-Patterns/*.json ~/.gf
```## Installation
```
git clone https://github.com/theinfosecguy/QuickXSS.git
cd QuickXSS
chmod +x QuickXSS.sh
```## Usage
Provide your Target & XSSHunter Payload as the Argument.
For generating XSS Hunter Payload: [Check This](https://xsshunter.com/)```
QuickXSS Usage./QuickXSS.sh -d
./QuickXSS.sh -d -b
./QuickXSS.sh -d -o xss_results.txt
./QuickXSS.sh -d -b -o xss_results.txt```
### Special Thanks
Special Thanks to all these for their amazing tools ❤ :
1. [TomNomNom](https://twitter.com/tomnomnom/) for Waybackurls and GF
2. [Shiv Chouhan](https://twitter.com/1ndianl33t) for GF Patterns
3. [HAHWUL](https://twitter.com/hahwul) for Dalfox
4. [Corben Leo]() for gau
4. [Zemo](https://www.youtube.com/watch?v=fVBvqy-7Ug0) for his amazing video.### Support !
If QuickXSS helped you land a Bounty ! Support me & Buy me a Ko-Fi
## Star History
[![Star History Chart](https://api.star-history.com/svg?repos=theinfosecguy/quickxss&type=Date)](https://star-history.com/#theinfosecguy/quickxss&Date)
[Buy Me a Ko-Fi](https://ko-fi.com/theinfosecguy)
#### React out to me if you have any ideas to make this better via [Twitter](https://twitter.com/g0t_rOoT_)