xss-exploitation

There are 10 repositories under xss-exploitation topic.

• payloadbox / xss-payload-list

  🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List

  xssxss-payloadsxss-vulnerabilityxss-exploitationxss-detectionxss-attacksxss-scannerxss-injectionxss-pocxss-scannerswebsite-vulnerabilitycross-site-scriptingreflected-xss-vulnerabilitiesdom-basedself-xsswebsecuritypayloadsxss-payloadpayloadbugbounty
  7694

• ssl / ezXSS

  ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

  payloadxssblindphptestxss-vulnerabilityxss-exploitationxss-detectionxss-attacksxss-injectionxss-scannerblind-xsseasy-to-useeasybugbugbountypenetration-testingalertredteamredteaming
  Language:PHP 2186
• toxssin

  t3l3machus / toxssin

  An XSS exploitation command-line interface and payload generator.

  cross-site-scriptingexploitationjavascriptpenetration-testingpentesting-toolspythonweb-penetration-testingxss-exploitationxss-vulnerabilityhackingxss
  Language:Python 1399

• n00py / WPForce

  Wordpress Attack Suite

  wordpresswordpress-attackhacking-toolpentest-toolreverse-shellkeyloggerphpjavascriptxss-exploitation
  Language:Python 977

• shelld3v / JSshell

  JSshell - JavaScript reverse/remote shell

  blindxssbugbountyhackingjavascriptjspentestpythonpython3securityshellxssxss-exploitation
  Language:Python 626

• ajinabraham / OWASP-Xenotix-XSS-Exploit-Framework

  OWASP Xenotix XSS Exploit Framework is an advanced Cross Site Scripting (XSS) vulnerability detection and exploitation framework.

  dom-xssexploitation-frameworkxenotixxssxss-detectionxss-exploitationxss-scanner
  Language:Python 536

• kleiton0x00 / ppmap

  A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.

  bug-bountybugbountybugbounty-toolcybersecurityinfosecprototype-pollutionxssxss-detectionxss-exploitationxss-vulnerability
  Language:Go 514

• Varbaek / xsser

  From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras

  xssxss-exploitationxss-pocxss-injectionxss-attacks
  Language:Python 424

• tegal1337 / 0l4bs

  Cross-site scripting labs for web application security enthusiasts

  xssxss-vulnerabilitylabsxss-exploitationbugbounty
  Language:PHP 322

• raz-varren / xsshell

  An XSS reverse shell framework

  golangjavascriptreverse-shellxssxss-exploitation
  Language:Go 309

• Jewel591 / xssmap

  XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具

  python3xssxss-vulnerabilityxss-exploitationxss-detectionxss-attacksxss-scannerpentestingpenetration-testingsqlmap
  Language:Python 269

• shadow-workers / shadow-workers

  Shadow Workers is a free and open source C2 and proxy designed for penetration testers to help in the exploitation of XSS and malicious Service Workers (SW)

  c2penetration-testing-toolsproxyservice-workerxss-exploitation
  Language:JavaScript 239

• doyensec / Session-Hijacking-Visual-Exploitation

  Session Hijacking Visual Exploitation

  appsecsession-hijackingxssxss-exploitation
  Language:JavaScript 210

• ihebski / XSS-Payloads

  Collection of XSS Payloads for fun and profit

  bugbountybughunterjavascriptpayloadspentestingxss-exploitationxss-payloads
  190

• R0X4R / D4rkXSS

  A list of useful payloads and Bypass for Web Application Security and Bug Bounty/CTF

  bugbountyethical-hackingxss-vulnerabilityxss-exploitationxss-filterhackingjavascriptbughunterbughunting
  168

• DenisPodgurskii / pentestkit

  OWASP PTK - application security browser extension.

  commandinjectiondastjwtjwt-securityowaspsecuritysqlinjectionxssxss-exploitation
  Language:JavaScript 159

• thenurhabib / collector

  Collect XSS vulnerable parameters from entire domain.

  wayback-machinewaybackurlsxssxss-vulnerabilityxss-exploitationxss-detectionhacking-tooltoolsurlcrawlervulnerability-scanner
  Language:Python 155

• blackhatethicalhacking / XSSRocket

  XSSRocket it is a tool designed for offensive security and XSS (Cross-Site Scripting) attacks.

  cybersecurityhackingoffensivepentestingbugbountyinfosecpenetration-testingxssxss-attacksxss-detectionxss-exploitationxss-scannerxss-vulnerability
  Language:Shell 152

• moeinfatehi / xss_vulnerability_challenges

  this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.

  application-securityappsecurityinfosecpenetration-testingpentestingxssxss-attacksxss-detectionxss-exploitationxss-filterxss-vulnerabilitycross-site-scriptinginput-validationowaspowasp-top-10owasp-top-ten
  Language:PHP 117

• kagurazakasanae / SuperXSS

  Make XSS Great Again

  javascriptphpwebsocketworkermanxssxss-exploitation
  Language:PHP 90

• rastating / xss-chef

  A web application for generating custom XSS payloads

  javascriptreactxssxss-exploitationxss-exploitpenetration-testingsecuritywebsec
  Language:JavaScript 78

• Err0r-ICA / SCANter

  Websites Vulnerability Scanner

  rcerce-exploitrce-scannerscannerserver-side-template-injectionsql-injectionsql-scannersqlisstissti-payloadsxssxss-attacksxss-detectionxss-exploitationxss-scannerxss-vulnerability
  Language:Python 73

• AXDOOMER / easy-xss-cookie-stealer

  XSS cookie stealer using JavaScript and PHP

  xssxss-vulnerabilityxss-exploitationxss-attacks
  Language:HTML 68

• 1bitrs / alert-1-to-win

  alert(1) to win payloads

  xssxss-pocxss-exploitationpayload
  51

• TalMaIka / Site-Scanner

  Site-Scanner - Web application vulnerability assessment tool.

  cms-detectorcybersecurity-toolssecurity-toolssqlinjectionvulnerability-detectionadmin-login-detectorattack-surfacehacking-toolspenetration-testingpentest-scriptssecurityxss-exploitation
  Language:Python 49

• CrazyProger1 / Simple-XSS

  Simple-XSS is a multiplatform cross-site scripting (XSS) vulnerability exploitation tool.

  beefbeef-analogueclifletguijinja2ngrokpentestpentestingpydanticpythonwebwebsocketsxssxss-attacksxss-exploitationxss-vulnerability
  Language:Python 47

• thenurhabib / scancss

  automatically crawl every URL and find cross site scripting (XSS)

  xssxss-vulnerabilityxss-exploitationxss-detectionxss-attacksxss-scannerhackinglinuxtermuxbugbounty
  Language:Python 41

• akalankauk / Foxss-XSS-Penetration-Testing-Tool

  Foxss is a simple php based penetration Testing Tool.Currently it will help to find XSS vulnerability in websites.

  phpxssxss-detectionxss-injectionxss-exploitationhacking-toolpenetrationtesting-toolsfoxss
  Language:JavaScript 35

• Esonhugh / ProxyInBrowser

  Open Source XSS exploitation tool. using http proxy to access the browser which executed js. [Engineering Experimental]

  browsercors-proxygolanghacktoolhttp-proxymitmmitmproxyproxy-servertoolstypescriptxssxss-exploitation
  Language:Go 35

• TheWation / PythonCookieStealer

  The Python cookie stealer is a tool that can be used in penetration testing and XSS attacks to steal browser cookies from victims.

  xssxss-exploitationxss-vulnerability
  Language:Python 30

• Ak-wa / XSSRecon

  XSSRecon - Reflected XSS Scanner

  xss-exploitationxss-scannercross-site-scriptingscanner-webpython3linuxkali-linuxkali-scripts
  Language:Python 28

• farinap5 / webpwn

  Web Vulnerability Detector (XSS,SQL,LFI,XST,WAF)

  xss-exploitationxss-vulnerabilityxss-detectionxss-attackssqlinjectionsqli-vulnerability-scannersqli-pentesterpythonpentestinglfilfi-exploitationwaf-detectionxstwebpwn
  Language:Python 26

• redcode-labs / poXSSon

  A framework for easy payloads development and deployment, collection of customizable XSS payloads

  pythontoolxssxss-attacksxss-exploitation
  Language:Python 26

• fagun18 / web-vulnerability

  Web Vulnerability Scanning and Exploitation Script

  exploitationmejbaur-bahar-fagunsql-injectionsql-injection-attackssql-injection-exploitationvulnerability-detectionvulnerability-scannersxss-detectionxss-exploitationxss-scannerxss-vulnerability
  Language:Python 25

• omurugur / XSS_Payload_List

  Cross Site Scripting ( XSS ) Vulnerability Payload List

  attackerattacksflawsinjectionmalicious-scriptspentestingscannervulnerabilityvulnerability-payloadxssxss-exploitationxss-payloadsxss-vulnerability
  24

• UbuntuStrike / CookieStealer.php

  A PHP script to run on your server to grab cookies through xss

  xss-exploitationxss-vulnerabilityxsscookiescookiejarcookiesessionpentestingredteamphp7
  Language:PHP 24