XSStrike
XSStrike copied to clipboard
s0md3v
Most advanced XSS scanner.
when I try this command: python3 xsstrike.py -u "http://94.237.58.148:56322/index.php?parameter=test"; I got this error: [!!] Unable to connect to the target. [~] Checking for DOM vulnerabilities [!!] Unable to connect to...
#### What does it implement/fix? Explain your changes. Updated the README to improve clarity and ease of installation for users. #### Where has this been tested? Python Version: Python 3.11.2...
#### What does it implement/fix? Explain your changes. fix the re.error #393 global flag (like (?s)) that is not placed at the very beginning of the expression. In Python versions...
I used XSStrike on a website with this command: XSStrike generated the following output: XSStrike v4.0.0 [!] Testing parameter: srule [!] Reflections found: 2 [~] Analysing reflections [~] Generating payloads...
**Describe the bug** When it starts to generate payloads gives this error: re.error: global flags not at the start of the expression at position 12 **To Reproduce** python3 xsstrike.py -u...
Allow Injecting Payloads in URLs Path using requests or other light weight tool instead of selenium
**Is your feature request related to a problem? Please describe.** Injecting payloads in URLs paths is very slow as it uses selenium by default **Describe the solution you'd like** Adding...
xsstrike If you test a get request for example python xsstrike.py -u "http:/abc.com/?a=1"&b=2&c=" If a has an xss vulnerability, xsstrike will load payload but parameter b will not fuzz
C:\Users\hp\Downloads\XSStrike-master>xsstrike.py XSStrike v3.1.5 Traceback (most recent call last): File "C:\Users\hp\Downloads\XSStrike-master\xsstrike.py", line 117, in from core.photon import photon File "C:\Users\hp\Downloads\XSStrike-master\core\photon.py", line 8, in from core.requester import requester File "C:\Users\hp\Downloads\XSStrike-master\core\requester.py", line 2,...
I was unable to raise a pull request hence reporting this fix via issue!!! Tested while using python version 3.11.9 XSS-strike is having issues while reading custom xss payload file...
if i want test this url "http://test.com/?a=1&b=1", 'a' parameter is essential parameter that must not be omitted and i want test only about 'b' parameter but this tool can't test...
