XSStrike
XSStrike copied to clipboard
s0md3v
Most advanced XSS scanner.
says its found some stuff but its not working. what does it mean when it says VECTOR FOR = how do i find that parameter? and use the exploit shown?...
If the blind xss payload in config.py starts with ", then it causes issues with the payload when the script is run. If we use the following as our payload:...
I tried running -t + --crawl -1 3 as exactly as mentioned in the doc and it returned 'unrecognized arguments -1 3 error' but it can't be 'cause I'm dead...
#### What does it implement/fix? Explain your changes. Changed the old banner that was barely seen and replaced it with a much cooler one #### Where has this been tested?...
**Is your feature request related to a problem? Please describe.** As of now whenever there is a WAF detected while initiating the xss scanner, the scan aborts right away when...
**Describe the bug** ``` Scanning 27 files... There were 2 dependency issues found. ----------------------------------------------------- The project contains obsolete dependencies: tld Consider removing them from your project's dependencies. If a package...
Hello, It can a good idea to add an option (-r) to load HTTP request from a file like sqlmap. HF
XSStrike v3.1.5 Checking for DOM vulnerabilities WAF Status: Offline Testing parameter: search_fulltext Reflections found: 6 Analysing reflections Generating payloads Traceback (most recent call last): File "/home/kali/Desktop/XSStrike/xsstrike.py", line 174, in scan(target,...
**Is your feature request related to a problem? Please describe.** A clear and concise description of what the problem is. Ex. I'm always frustrated when [...] **Describe the solution you'd...
