The-XSS-Rat / XSS-Freak
XSS-Freak is an xss scanner fully written in python3 from scratch. it is one of its kind since it crawls the website for all possible links and directories to expand its attack scope. then it searches them for inputs tags and then launches a bunch of xss payloads. if an inputs is not sanitized and vulnerable to xss attacks, the tool will discov…
☆20Updated 4 years ago
Alternatives and similar repositories for XSS-Freak:
Users that are interested in XSS-Freak are comparing it to the libraries listed below
- Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare☆58Updated 2 years ago
- ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, …☆32Updated last year
- CVE-2024-24919 [Check Point Security Gateway Information Disclosure]☆30Updated 7 months ago
- Filter URLs to save your time.☆59Updated 2 years ago
- A simple automation tool to detect lfi, rce and ssti vulnerability☆55Updated 2 years ago
- Oneliner Bug Bounty Collection collected from GitHub to all bug bounty hunters☆30Updated last year
- Web Crawler for Identifying Entry Points☆11Updated 10 months ago
- ☆77Updated last year
- ☆31Updated 2 years ago
- An offensive security tool used to enumerate and spray passwords for O365 accounts on both Managed and Federated AD services.☆47Updated 2 years ago
- Swagger UI >=3.14.1 < 3.38.0 XSS payload☆17Updated 10 months ago
- ☆67Updated last year
- ex-param is an automated tool designed for finding reflected parameters for XSS vulnerabilities. It crawls a target website, extracts GET…☆46Updated last week
- Dump files via Directory Traversal, LFI, Arbitrary File Read in a breeze with the help of ffuf☆18Updated last year
- Host Header Vulnerability Scanner Automated Tool☆23Updated last year
- Private Nuclei Templates☆89Updated last week
- ☆18Updated last year
- "XSS automation tool helps hackers identify and exploit cross-site scripting vulnerabilities in web apps. Tests for reflected and persist…☆92Updated 6 months ago
- A curated list wordlists for bruteforcing and fuzzing☆80Updated last year
- ☆41Updated 3 years ago
- A standalone collection of widely used technologies with default credentials enabled, which can be utilized for establishing an initial f…☆18Updated 7 months ago
- Bug Bounty Recon Automation Script -- Scan AWS IP Range Certs for Matching FQDN☆25Updated 3 years ago
- Here are some cool and some unpublished Dorks☆60Updated 2 weeks ago
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆65Updated last year
- Tips, Tricks, and Scripts for Linux Post Exploitation☆38Updated last year
- A simple plugin to export JS files from one or multiple targets☆40Updated last year
- This tool allows you to find ssti vulnerability with ease!☆20Updated 2 years ago
- Tools for bug bounty☆27Updated 11 months ago
- These Repositories About My Recon Methodology To Give Some Idea For Other Hunter How To Do Recon☆44Updated 2 years ago