Quitten / XSSor
XSSor is a semi-automatic reflected and persistent XSS detector extension for Burp Suite. The tool was written in Python by Barak Tawily, an application security expert. XSSor was designed to help security testers by performing semi-automatic reflected and persistent XSS detection tests.
☆44Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for XSSor
- This script is intended to automate your reconnaissance process in an organized fashion☆38Updated 5 years ago
- ☆31Updated 5 years ago
- An entry level resource to learning bug bounty.☆24Updated 6 years ago
- Get all possible href | src | url from target url or domain☆41Updated 4 years ago
- web-based-fuzzer☆32Updated 4 years ago
- gathers the XSS cheatsheet payloads and creates a usable wordlist☆70Updated 3 years ago
- Broken Link Hijacking Burp Extension☆55Updated 5 years ago
- Burp Suite extension to easily export sub domains☆44Updated 4 years ago
- Fuzzing for LFI using Burpsuite☆59Updated 8 years ago
- This tool will scan all the URL's in the file and will provide Content-Length, Status-Code, Server and more.☆37Updated 2 years ago
- This is a web application fuzzer scanner - the goal was CLI flexibility and rapid prototyping☆47Updated 5 years ago
- Simple Server Side Request Forgery services enumeration tool.☆54Updated 6 years ago
- Bug Bounty statistics tool.☆28Updated 2 years ago
- This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…☆46Updated 5 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This …☆60Updated 2 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆31Updated 6 years ago
- RAS(RAndom Subdomain) Fuzzer☆43Updated 4 years ago
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆26Updated 5 years ago
- AWS S3 Bucket Finder.☆15Updated 5 years ago
- Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature☆36Updated 7 years ago
- This is a small extension to make graphql readable☆30Updated 5 years ago
- This changes the style of Burp Suite's Repeater tabs to help the testers☆28Updated 5 years ago
- Instant access to you bug bounty submission dashboard on various platforms + publicly disclosed reports + #bugbountytip☆20Updated 4 years ago
- A simple tool to detect wildcards domain based on Amass's wildcards detector.☆62Updated 3 years ago
- A bash script that fetches and maintains thousands of DNS resolvers☆65Updated 4 years ago
- A sub-domain enumeration tool☆18Updated 4 years ago