The-XSS-Rat / XSS-Freak
XSS-Freak is an xss scanner fully written in python3 from scratch. it is one of its kind since it crawls the website for all possible links and directories to expand its attack scope. then it searches them for inputs tags and then launches a bunch of xss payloads. if an inputs is not sanitized and vulnerable to xss attacks, the tool will discov…
☆17Updated 4 years ago
Related projects ⓘ
Alternatives and complementary repositories for XSS-Freak
- Filter URLs to save your time.☆59Updated 2 years ago
- ☆64Updated last year
- ☆38Updated 3 years ago
- ☆68Updated 6 months ago
- ☆26Updated last year
- Burp Suite Certified Practitioner Exam Study☆13Updated last year
- Red Teaming tools and techniques☆47Updated last year
- ☆76Updated last year
- Tips, Tricks, and Scripts for Linux Post Exploitation☆38Updated last year
- ☆18Updated last year
- ☆41Updated last year
- ☆47Updated 2 years ago
- Collection of my talks and workshops about hacking & cybersecurity☆25Updated 4 months ago
- A curated list wordlists for bruteforcing and fuzzing☆79Updated last year
- Create your own recon & vulnerability scanner with Trickest and GitHub☆49Updated last year
- PassMute - A multi featured Password Transmutation/Mutator Tool☆51Updated last year
- ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, …☆31Updated 11 months ago
- A simple automation tool to detect lfi, rce and ssti vulnerability☆55Updated 2 years ago
- CVE-2024-24919 [Check Point Security Gateway Information Disclosure]☆31Updated 5 months ago
- My Offensive Security OSWA certification experience and my personal opinion what helps in preparation for the exam☆38Updated last year
- Python tool to test known techniques to bypass 403 and 401 HTTP responses.☆35Updated last year
- An offensive security tool used to enumerate and spray passwords for O365 accounts on both Managed and Federated AD services.☆47Updated last year
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆60Updated 10 months ago
- A tool for Subdomain takeovers detection☆26Updated 2 years ago
- Check out this JavaScript code that extracts URLs from a web page and linked scripts! Perfect for web scraping and penetration testing☆16Updated 4 months ago
- Collection of over 9000 xss payloads | heavy xss collection☆13Updated last year
- A simple utility to perform reverse WHOIS lookups using whoisxml API☆36Updated last year
- Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare☆57Updated last year
- I collected it to help the bug hunter get a reward☆55Updated 2 years ago
- Mining URLs from Wayback Machine for bug hunting/fuzzing/further probing☆56Updated last year