Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/theinfosecguy/QuickXSS

Automating XSS using Bash
https://github.com/theinfosecguy/QuickXSS

bash-script bugbounty hacktoberfest hacktoberfest2021 xss xss-detection xss-vulnerability

Last synced: 21 days ago
JSON representation

Automating XSS using Bash

Awesome Lists containing this project

README

        


QuickXSS - Automate your XSS workflow












_**Read Official Guide: https://www.bugblogs.tech/post/automating-xss-using-dalfox-gf-and-waybackurls**_

Bash Script to Automate XSS using Waybackurls, GF, GF Patterns and Dalfox.

Here are their Repositories:

1. [GF](https://github.com/tomnomnom/gf)
2. [GF Patterns](https://github.com/1ndianl33t/Gf-Patterns)
3. [Dalfox](https://github.com/hahwul/dalfox)
4. [Waybackurls](https://github.com/tomnomnom/waybackurls)
5. [Gau](https://github.com/lc/gau)

## Pre-Requisites

Install Go in your Machine and then install required Tools.

For installing Go in your system:
```
sudo apt install -y golang
export GOROOT=/usr/lib/go
export GOPATH=$HOME/go
export PATH=$GOPATH/bin:$GOROOT/bin:$PATH
source .bashrc
```
## Install Tools in one go !

```
chmod +x install.sh
./install.sh
```

## Docker support

```bash
# for build docker image
$ docker build --tag quickxss .
# run docker image
$ docker run -it --rm --name qs quickxss
# Set alias to ~/.zshrc or ~/.bashrc ( depend which shell you are using ) will help to global execute quickxss
$ alias quickxss='docker run -it --rm --name qs quickxss'
```

### For Installing Pre-Requisites (In case you want to do it one by one):
```
go get -u github.com/tomnomnom/gf
go get github.com/tomnomnom/waybackurls
GO111MODULE=on go get -v github.com/hahwul/dalfox/v2
GO111MODULE=on go get -u -v github.com/lc/gau
mkdir .gf
cp -r $GOPATH/src/github.com/tomnomnom/gf/examples ~/.gf
git clone https://github.com/1ndianl33t/Gf-Patterns
mv ~/Gf-Patterns/*.json ~/.gf
```

## Installation

```
git clone https://github.com/theinfosecguy/QuickXSS.git
cd QuickXSS
chmod +x QuickXSS.sh
```

## Usage

Provide your Target & XSSHunter Payload as the Argument.
For generating XSS Hunter Payload: [Check This](https://xsshunter.com/)

```
QuickXSS Usage

./QuickXSS.sh -d
./QuickXSS.sh -d -b
./QuickXSS.sh -d -o xss_results.txt
./QuickXSS.sh -d -b -o xss_results.txt

```

### Special Thanks

Special Thanks to all these for their amazing tools ❤ :
1. [TomNomNom](https://twitter.com/tomnomnom/) for Waybackurls and GF
2. [Shiv Chouhan](https://twitter.com/1ndianl33t) for GF Patterns
3. [HAHWUL](https://twitter.com/hahwul) for Dalfox
4. [Corben Leo]() for gau
4. [Zemo](https://www.youtube.com/watch?v=fVBvqy-7Ug0) for his amazing video.

### Support !

If QuickXSS helped you land a Bounty ! Support me & Buy me a Ko-Fi

## Star History

[![Star History Chart](https://api.star-history.com/svg?repos=theinfosecguy/quickxss&type=Date)](https://star-history.com/#theinfosecguy/quickxss&Date)

[Buy Me a Ko-Fi](https://ko-fi.com/theinfosecguy)

#### React out to me if you have any ideas to make this better via [Twitter](https://twitter.com/g0t_rOoT_)