The-XSS-Rat / XSS-Freak
XSS-Freak is an xss scanner fully written in python3 from scratch. it is one of its kind since it crawls the website for all possible links and directories to expand its attack scope. then it searches them for inputs tags and then launches a bunch of xss payloads. if an inputs is not sanitized and vulnerable to xss attacks, the tool will discov…
☆17Updated 4 years ago
Related projects ⓘ
Alternatives and complementary repositories for XSS-Freak
- Filter URLs to save your time.☆59Updated 2 years ago
- A simple automation tool to detect lfi, rce and ssti vulnerability☆55Updated 2 years ago
- In this repo, I have included the tools that i used for my everyday penetration tests, if you have just installed kali and lost your tool…☆23Updated last month
- ☆64Updated last year
- ☆69Updated 6 months ago
- Red Teaming tools and techniques☆47Updated last year
- ☆16Updated 6 months ago
- ☆62Updated last year
- ☆40Updated 2 weeks ago
- ☆47Updated 2 years ago
- ☆76Updated last year
- A standalone collection of widely used technologies with default credentials enabled, which can be utilized for establishing an initial f…☆17Updated 5 months ago
- This is my personal Enumeration Handbook that I used for the OSCP 2023☆23Updated last year
- ☆10Updated 11 months ago
- ☆39Updated 3 years ago
- A proper approach to pentest a Web application with the mixture of all useful payloads and complete testing guidance of attacks. Designed…☆42Updated 3 months ago
- An offensive security tool used to enumerate and spray passwords for O365 accounts on both Managed and Federated AD services.☆47Updated 2 years ago
- Web Hacking and Red Teaming MindMap☆68Updated last year
- PassMute - A multi featured Password Transmutation/Mutator Tool☆51Updated last year
- Bug Bounty Recon Automation Script -- Scan AWS IP Range Certs for Matching FQDN☆24Updated 3 years ago
- Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare☆58Updated last year
- ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, …☆31Updated 11 months ago
- ☆42Updated last year
- subBruter is a tool designed to efficiently probe for alive subdomins from a provided wordlist.☆26Updated 9 months ago
- Burp Suite Certified Practitioner Exam Study☆13Updated last year
- OSCP preparation tools, scripts and cheatsheets☆55Updated last year
- Supertruder but better☆33Updated last year
- My Offensive Security OSWA certification experience and my personal opinion what helps in preparation for the exam☆38Updated last year
- Web Crawler for Identifying Entry Points☆11Updated 7 months ago
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆60Updated 10 months ago