A basic tool to check for XSS vulnerabilities. It takes a list of URLs and checks if the parameter values appear in the response.
go install github.com/xhzeem/reflxss@latest
Effortlessly scan for reflected XSS vulnerabilities in a list of URLs.
-i *str Input File Location
-o *str Output File Location
-ua *str User-Agent Header
-t *int Number of Threads
![Screenshot 2024-02-15 at 11 08 49 AM](https://private-user-images.githubusercontent.com/34074156/304938530-7a95e8e9-6ff7-4770-bb78-da733f7b4bf3.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.QV1VxwBh9OgnXTebTgZhQNjSWyCFask44N3Jh6WorRc)