xss-exploitation

There are 9 repositories under xss-exploitation topic.

• payloadbox / xss-payload-list

  🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List

  xssxss-payloadsxss-vulnerabilityxss-exploitationxss-detectionxss-attacksxss-scannerxss-injectionxss-pocxss-scannerswebsite-vulnerabilitycross-site-scriptingreflected-xss-vulnerabilitiesdom-basedself-xsswebsecuritypayloadsxss-payloadpayloadbugbounty
  7512

• ssl / ezXSS

  ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

  payloadxssblindphptestxss-vulnerabilityxss-exploitationxss-detectionxss-attacksxss-injectionxss-scannerblind-xsseasy-to-useeasybugbugbountypenetration-testingalertredteamredteaming
  Language:PHP 2117
• toxssin

  t3l3machus / toxssin

  An XSS exploitation command-line interface and payload generator.

  cross-site-scriptingexploitationhackingjavascriptpenetration-testingpentesting-toolspythonweb-penetration-testingxssxss-exploitationxss-vulnerability
  Language:Python 1356

• n00py / WPForce

  Wordpress Attack Suite

  wordpresswordpress-attackhacking-toolpentest-toolreverse-shellkeyloggerphpjavascriptxss-exploitation
  Language:Python 973

• shelld3v / JSshell

  JSshell - JavaScript reverse/remote shell

  pythonshelljsjavascriptxsspython3hackingxss-exploitationblindxsssecuritybugbountypentest
  Language:Python 619

• ajinabraham / OWASP-Xenotix-XSS-Exploit-Framework

  OWASP Xenotix XSS Exploit Framework is an advanced Cross Site Scripting (XSS) vulnerability detection and exploitation framework.

  xssexploitation-frameworkxss-scannerxenotixxss-exploitationxss-detectiondom-xss
  Language:Python 534

• kleiton0x00 / ppmap

  A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.

  bug-bountybugbountybugbounty-toolcybersecurityinfosecprototype-pollutionxssxss-detectionxss-exploitationxss-vulnerability
  Language:Go 503

• Varbaek / xsser

  From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras

  xssxss-exploitationxss-pocxss-injectionxss-attacks
  Language:Python 425

• tegal1337 / 0l4bs

  Cross-site scripting labs for web application security enthusiasts

  bugbountylabsxssxss-exploitationxss-vulnerability
  Language:PHP 310

• raz-varren / xsshell

  An XSS reverse shell framework

  golangjavascriptreverse-shellxssxss-exploitation
  Language:Go 306

• Jewel591 / xssmap

  XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具

  python3xssxss-vulnerabilityxss-exploitationxss-detectionxss-attacksxss-scannerpentestingpenetration-testingsqlmap
  Language:Python 263

• shadow-workers / shadow-workers

  Shadow Workers is a free and open source C2 and proxy designed for penetration testers to help in the exploitation of XSS and malicious Service Workers (SW)

  c2penetration-testing-toolsproxyservice-workerxss-exploitation
  Language:JavaScript 231

• doyensec / Session-Hijacking-Visual-Exploitation

  Session Hijacking Visual Exploitation

  appsecsession-hijackingxssxss-exploitation
  Language:JavaScript 197

• ihebski / XSS-Payloads

  Collection of XSS Payloads for fun and profit

  bugbountybughunterjavascriptpayloadspentestingxss-exploitationxss-payloads
  176

• R0X4R / D4rkXSS

  A list of useful payloads and Bypass for Web Application Security and Bug Bounty/CTF

  bugbountyethical-hackingxss-vulnerabilityxss-exploitationxss-filterhackingjavascriptbughunterbughunting
  168

• thenurhabib / collector

  Collect XSS vulnerable parameters from entire domain.

  crawlerhacking-tooltoolsurlvulnerability-scannerwayback-machinewaybackurlsxssxss-detectionxss-exploitationxss-vulnerability
  Language:Python 152

• DenisPodgurskii / pentestkit

  OWASP PTK - application security browser extension.

  commandinjectiondastjwtjwt-securityowaspsecuritysqlinjectionxssxss-exploitation
  Language:JavaScript 142

• blackhatethicalhacking / XSSRocket

  XSSRocket it is a tool designed for offensive security and XSS (Cross-Site Scripting) attacks.

  bugbountycybersecurityhackinginfosecoffensivepenetration-testingpentestingxssxss-attacksxss-detectionxss-exploitationxss-scannerxss-vulnerability
  Language:Shell 132

• moeinfatehi / xss_vulnerability_challenges

  this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.

  application-securityappsecurityinfosecpenetration-testingpentestingxssxss-attacksxss-detectionxss-exploitationxss-filterxss-vulnerabilitycross-site-scriptinginput-validationowaspowasp-top-10owasp-top-ten
  Language:PHP 117

• kagurazakasanae / SuperXSS

  Make XSS Great Again

  xssxss-exploitationwebsocketjavascriptphpworkerman
  Language:PHP 90

• rastating / xss-chef

  A web application for generating custom XSS payloads

  javascriptpenetration-testingreactsecuritywebsecxssxss-exploitxss-exploitation
  Language:JavaScript 78

• Err0r-ICA / SCANter

  Websites Vulnerability Scanner

  rcerce-exploitrce-scannerscannerserver-side-template-injectionsql-injectionsql-scannersqlisstissti-payloadsxssxss-attacksxss-detectionxss-exploitationxss-scannerxss-vulnerability
  Language:Python 72

• AXDOOMER / easy-xss-cookie-stealer

  XSS cookie stealer using JavaScript and PHP

  xssxss-attacksxss-exploitationxss-vulnerability
  Language:HTML 66

• 1bitrs / alert-1-to-win

  alert(1) to win payloads

  xssxss-pocxss-exploitationpayload
  52

• TalMaIka / Site-Scanner

  Site-Scanner - Web application vulnerability assessment tool.

  cms-detectorcybersecurity-toolssecurity-toolssqlinjectionvulnerability-detectionadmin-login-detectorattack-surfacehacking-toolspenetration-testingpentest-scriptssecurityxss-exploitation
  Language:Python 48

• CrazyProger1 / Simple-XSS

  Simple-XSS is a multiplatform cross-site scripting (XSS) vulnerability exploitation tool.

  clifletguipythonwebwebsocketsxssxss-attacksxss-exploitationxss-vulnerabilitypentestpentestingjinja2ngrokpydanticbeefbeef-analogue
  Language:Python 46

• thenurhabib / scancss

  automatically crawl every URL and find cross site scripting (XSS)

  bugbountyhackinglinuxtermuxxssxss-attacksxss-detectionxss-exploitationxss-scannerxss-vulnerability
  Language:Python 41

• akalankauk / Foxss-XSS-Penetration-Testing-Tool

  Foxss is a simple php based penetration Testing Tool.Currently it will help to find XSS vulnerability in websites.

  foxsshacking-toolpenetrationphptesting-toolsxssxss-detectionxss-exploitationxss-injection
  Language:JavaScript 35

• Esonhugh / ProxyInBrowser

  Open Source XSS exploitation tool. using http proxy to access the browser which executed js. [Engineering Experimental]

  browsercors-proxygolanghacktoolhttp-proxymitmmitmproxyproxy-servertoolstypescriptxssxss-exploitation
  Language:Go 29

• farinap5 / webpwn

  Web Vulnerability Detector (XSS,SQL,LFI,XST,WAF)

  xss-exploitationxss-vulnerabilityxss-detectionxss-attackssqlinjectionsqli-vulnerability-scannersqli-pentesterpythonpentestinglfilfi-exploitationwaf-detectionxstwebpwn
  Language:Python 26

• redcode-labs / poXSSon

  A framework for easy payloads development and deployment, collection of customizable XSS payloads

  pythontoolxssxss-attacksxss-exploitation
  Language:Python 26

• TheWation / PythonCookieStealer

  The Python cookie stealer is a tool that can be used in penetration testing and XSS attacks to steal browser cookies from victims.

  xssxss-exploitationxss-vulnerability
  Language:Python 25

• Ak-wa / XSSRecon

  XSSRecon - Reflected XSS Scanner

  cross-site-scriptingkali-linuxkali-scriptslinuxpython3scanner-webxss-exploitationxss-scanner
  Language:Python 24

• fagun18 / web-vulnerability

  Web Vulnerability Scanning and Exploitation Script

  exploitationmejbaur-bahar-fagunsql-injectionsql-injection-attackssql-injection-exploitationvulnerability-detectionvulnerability-scannersxss-detectionxss-exploitationxss-scannerxss-vulnerability
  Language:Python 23

• UbuntuStrike / CookieStealer.php

  A PHP script to run on your server to grab cookies through xss

  cookiejarcookiescookiesessionpentestingphp7redteamxssxss-exploitationxss-vulnerability
  Language:PHP 23

• omurugur / XSS_Payload_List

  Cross Site Scripting ( XSS ) Vulnerability Payload List

  xssxss-vulnerabilityxss-exploitationxss-payloadsvulnerabilityattacksscannerpentestingmalicious-scriptsvulnerability-payloadinjectionattackerflaws
  22