Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/yaph/domxssscanner
DOMXSS Scanner is an online tool to scan source code for DOM based XSS vulnerabilities
https://github.com/yaph/domxssscanner
dom domxss online-tool scanner web-security xss-vulnerability
Last synced: about 1 month ago
JSON representation
DOMXSS Scanner is an online tool to scan source code for DOM based XSS vulnerabilities
- Host: GitHub
- URL: https://github.com/yaph/domxssscanner
- Owner: yaph
- Archived: true
- Created: 2011-02-09T00:42:51.000Z (almost 14 years ago)
- Default Branch: master
- Last Pushed: 2019-01-17T12:00:46.000Z (almost 6 years ago)
- Last Synced: 2024-08-01T10:17:13.333Z (4 months ago)
- Topics: dom, domxss, online-tool, scanner, web-security, xss-vulnerability
- Language: HTML
- Homepage: https://geeksta.net/domxssscanner/
- Size: 332 KB
- Stars: 191
- Watchers: 12
- Forks: 53
- Open Issues: 4
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
- awesome-bugbounty-tools - domxssscanner - DOMXSS Scanner is an online tool to scan source code for DOM based XSS vulnerabilities (Exploitation / XSS Injection)
README
[DOM XSS Scanner](http://domxssscanner.geeksta.net/) is an online tool that
facilitates code review of web pages and JavaScript code for potential
DOM based XSS security vulnerabilities.## Sample Results Page
![Sample Results Page](/static/img/domxssscanner-results.jpg)
[Check your Web page](http://domxssscanner.geeksta.net/)
Learn more about the tool on the project's [about page](http://domxssscanner.geeksta.net/info/about).
## Install
Clone this repository and download the [Google App Engine SDK for Python](https://cloud.google.com/appengine/downloads#Google_App_Engine_SDK_for_Python). Extract the SDK archive and add aliases for the dev server and update programs, for example:
alias gae_pyserver='python PATH_TO_SDK/google_appengine/dev_appserver.py'
alias gae_update='python PATH_TO_SDK/google_appengine/appcfg.py update'Then start the dev server in the domxssscanner directory with the command:
gae_pyserver .
You can then access the application at `http://localhost:8080/`.