XSSor is a semi-automatic reflected and persistent XSS detector extension for Burp Suite. The tool was written in Python by Barak Tawily, an application security expert. XSSor was designed to help security testers by performing semi-automatic reflected and persistent XSS detection tests.
☆62Feb 22, 2021Updated 5 years ago
Alternatives and similar repositories for XSSor
Users that are interested in XSSor are comparing it to the libraries listed below
Sorting:
- Penetration Test Vulnerabilities Manager is an extension for Burp Suite, written in Jython. It was developed by Barak Tawily in order to …☆31Jul 25, 2021Updated 4 years ago
- all manner of wordlists☆24Jan 19, 2022Updated 4 years ago
- Burp Suite Extensions☆12Oct 19, 2021Updated 4 years ago
- Wordlists for Bug Bounty☆23Aug 18, 2019Updated 6 years ago
- Automated Recon Tool Installer☆16Jun 29, 2022Updated 3 years ago
- SubdomainDB is a simple self-hosted API that allows you to maintain your own subdomain database.☆31Jan 8, 2018Updated 8 years ago
- This repo offers comprehensive information, necessary tools, and instructional videos for beginners in Android penetration testing, provi…☆22Jun 12, 2023Updated 2 years ago
- Collection of nmap nse scripts☆23May 15, 2019Updated 6 years ago
- This includes all the templates of nuclei collected from different sources☆18Dec 30, 2022Updated 3 years ago
- My gfPatterns☆15Aug 31, 2021Updated 4 years ago
- Some contributions in the nuclei-templates repository☆62Jun 18, 2022Updated 3 years ago
- Automated iOS Frida Gadget injection and Testflight deployment using Frida and Fastlane☆14Mar 24, 2023Updated 2 years ago
- ☆11Dec 5, 2020Updated 5 years ago
- ☆21Dec 4, 2014Updated 11 years ago
- Nuclei Templates☆14Jan 13, 2023Updated 3 years ago
- Wordlist to get files/ folders listed by the app that may expose passwords, sensitive file or folders☆22Jul 10, 2020Updated 5 years ago
- Burp Extension to identify PII data☆21Jan 29, 2021Updated 5 years ago
- Funny Fuzzing Wordlist☆14Jun 14, 2022Updated 3 years ago
- my templates for the nuclei engine to find security vulnerabilities.☆10Aug 19, 2024Updated last year
- External NSE script library (Collection of unofficial scripts) - Feel free to submit your NSE scripts!☆33Jan 5, 2022Updated 4 years ago
- Nuclei templates which I wrote myself☆10Jan 8, 2022Updated 4 years ago
- XSS Hunter Burp Plugin☆151Aug 31, 2018Updated 7 years ago
- My configs, tools and what not. For everytime that I blow up my vm....☆18Jan 21, 2020Updated 6 years ago
- Advanced reconnaissance framework for bug bounty hunters - Automate subdomain enumeration, vulnerability scanning, and security reconnais…☆58Updated this week
- This script scrapes the list of open Bug Bounty Programs from openbugbounty.org☆28Mar 22, 2022Updated 3 years ago
- ☆15Dec 27, 2022Updated 3 years ago
- part of my wordlist to bruteforce DNS to find subdoamains.☆61Jul 26, 2021Updated 4 years ago
- These are payloads to hunt for various bugs in web applications. from SQLi, xss, RCE to path traversal and more with XSS and fuzzing.☆11Oct 3, 2020Updated 5 years ago
- A Mozilla Firefox extension which allows quick access to your google-dorking result☆19Jun 18, 2020Updated 5 years ago
- Shared wordlists used for common subdomains , directory bruteforcing etc.☆10May 26, 2025Updated 9 months ago
- Bug Bounty Recon wordlist Generator☆21Jul 17, 2020Updated 5 years ago
- A collection of scripts to extend Burp Suite☆142Apr 8, 2019Updated 6 years ago
- ☆13Mar 15, 2022Updated 4 years ago
- Simple command shell collections☆35Mar 7, 2021Updated 5 years ago
- ☆14May 13, 2018Updated 7 years ago
- Burp Extension for copying requests safely. It redacts headers like Cookie, Authorization and X-CSRF-Token for now. More support can be a…☆18May 17, 2020Updated 5 years ago
- ☆36Jun 23, 2022Updated 3 years ago
- ☆41Jul 24, 2022Updated 3 years ago
- Takeover script extracts CNAME record of all subdomains at once. TakeOver saves researcher time and increase the chance of finding subdom…☆101Apr 7, 2023Updated 2 years ago