The-XSS-Rat / XSS-FreakLinks
XSS-Freak is an xss scanner fully written in python3 from scratch. it is one of its kind since it crawls the website for all possible links and directories to expand its attack scope. then it searches them for inputs tags and then launches a bunch of xss payloads. if an inputs is not sanitized and vulnerable to xss attacks, the tool will discov…
☆25Updated 5 years ago
Alternatives and similar repositories for XSS-Freak
Users that are interested in XSS-Freak are comparing it to the libraries listed below
Sorting:
- Checks for SSRF using built-in custom Payloads after fetching URLs from Multiple Passive Sources & applying complex patterns aimed at SSR…☆131Updated last year
- Sub-Domain TakeOver Vulnerability Scanner (edoardottt fork)☆73Updated 10 months ago
- "XSS automation tool helps hackers identify and exploit cross-site scripting vulnerabilities in web apps. Tests for reflected and persist…☆92Updated last year
- Oneliner Bug Bounty Collection collected from GitHub to all bug bounty hunters☆34Updated last year
- AutoRecon-XSS is a script designed for automated reconnaissance of XSS vulnerabilities. It crawls the target URL or alive domains, extrac…☆134Updated last year
- ☆42Updated 4 years ago
- Here Are Some Bug Bounty Resource From Twitter☆103Updated 6 months ago
- ScopeHunter is a command-line tool for finding in scope targets for bug bounty programs.☆73Updated last year
- Dnsbruter is a powerful tool designed to perform active subdomain enumeration and discovery. It uses DNS resolution to efficiently brutef…☆124Updated 11 months ago
- This repository contains some of the most exhaustive wordlists for enumeration, gathered from a lot of wordlists available on the Interne…☆106Updated last year
- Welcome to the Bug Hunter's Wordlists repository! 🐛🔍 This repository serves as a comprehensive collection of essential wordlists utiliz…☆151Updated last year
- Cross Injector — A Python Script for Cross-Site Scripting (XSS) Detection☆41Updated 3 months ago
- A curated list wordlists for bruteforcing and fuzzing☆85Updated 2 years ago
- Here are some cool and some unpublished Dorks☆79Updated 10 months ago
- A Tool for Bug Bounty Hunters that uses Passive and Active Techniques to fetch URLs as a strong Recon, so you can then create Attack Vect…☆78Updated last year
- Filter URLs to save your time.☆60Updated 3 years ago
- Automated Subdomain Enumeration and Scanning Tool☆115Updated 2 years ago
- A proper approach to pentest a Web application with the mixture of all useful payloads and complete testing guidance of attacks. Designed…☆90Updated 9 months ago
- Web Crawler for Identifying Entry Points☆11Updated last year
- Streamline your recon and vulnerability detection process with SCRIPTKIDDI3, A recon and initial vulnerability detection tool built using…☆151Updated last year
- XSSRocket it is a tool designed for offensive security and XSS (Cross-Site Scripting) attacks.☆156Updated last year
- SWS-Recon is a Python Tool designed to performed Reconnaissance on the given target website- Domain or SubDomain. SWS-Recon collects info…☆22Updated 2 years ago
- Learn how to automate XSS, SSRF, LFI, SQLI, NoSQLi☆44Updated 4 years ago
- SidePeek.js is a curated set of JavaScript payloads for browser-based recon. Run them in DevTools or as bookmarklets to uncover hidden AP…☆20Updated 6 months ago
- HackLiners: CyberSec/BugHunting OneLiners☆62Updated last year
- Postman OSINT tool to extract creds, token, username, email & more from Postman Public Workspaces☆163Updated 7 months ago
- CVE-2024-24919 [Check Point Security Gateway Information Disclosure]☆33Updated last year
- ☆66Updated 2 years ago
- Host Header Vulnerability Scanner Automated Tool☆27Updated 7 months ago
- ☆124Updated 3 months ago