Collection of XSS Payloads for fun and profit
☆212Aug 14, 2020Updated 5 years ago
Alternatives and similar repositories for XSS-Payloads
Users that are interested in XSS-Payloads are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Bugbounty utility to store list of enumerated subdomains into an sqlite3 db [one liner style / Pipe and save]☆29Jan 6, 2021Updated 5 years ago
- HTTP requests of FrontPage expolit☆26Dec 19, 2013Updated 12 years ago
- Cross Site Scripting ( XSS ) Vulnerability Payload List☆23Feb 23, 2021Updated 5 years ago
- Finding XSS during recon☆272Sep 13, 2022Updated 3 years ago
- Funny Fuzzing Wordlist☆14Jun 14, 2022Updated 3 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Misc stuff from internet☆12Apr 13, 2026Updated 3 weeks ago
- Subdomain Enumeration Wordlist. 8956437 unique words. Updated.☆76May 23, 2020Updated 5 years ago
- A replacement of "qsreplace", accepts URLs as standard input, replaces all query string values with user-supplied values and stdout.☆109Mar 1, 2022Updated 4 years ago
- Personnel scripts,projects notes,hacks,random thoughts,mindmap etc....☆35Feb 14, 2025Updated last year
- Bash script to extract data from the Waybackmachine☆11Mar 15, 2021Updated 5 years ago
- ☆12Jun 16, 2021Updated 4 years ago
- ShoLister is a tool that collects all available subdomains for specific hostname or organization from Shodan. The tool is designed to be …☆13May 10, 2022Updated 3 years ago
- Bug Bounty stuffs, payloads, scripts, profiles, tips and tricks, ...☆148Jul 30, 2020Updated 5 years ago
- ☆25Dec 4, 2019Updated 6 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ☆38Dec 10, 2023Updated 2 years ago
- It grep subdomains, email/username, build custom wordlist etc from gau results☆50Nov 4, 2022Updated 3 years ago
- RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.☆1,910Oct 29, 2025Updated 6 months ago
- jaVasCript:/*-/*`/*\`/*'/*"/**/(/* */oNcliCk=alert() )//%0D%0A%0d%0a//</stYle/</titLe/</teXtarEa/</scRipt/--!>\x3csVg/<sVg/oNloAd=alert()…☆11Apr 9, 2021Updated 5 years ago
- ☆12Jan 4, 2022Updated 4 years ago
- ☆11Mar 7, 2021Updated 5 years ago
- A simple tool which makes creating nuclei templates even easier.☆37Jun 23, 2024Updated last year
- Exploit for Microsoft SharePoint 2019☆13Dec 28, 2023Updated 2 years ago
- Awesome XSS Payloads☆83Feb 24, 2016Updated 10 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load☆296Sep 22, 2024Updated last year
- Xss Payload Generator ~ Xss Scanner ~ Xss Dork Finder☆604Jul 25, 2023Updated 2 years ago
- ☆169Dec 27, 2024Updated last year
- Simple tool to gather domains from crt.sh using the organization name☆102Dec 16, 2021Updated 4 years ago
- ☆28Mar 18, 2020Updated 6 years ago
- BChecks collection for Burp Suite Professional☆100Jun 6, 2024Updated last year
- Automated tool for domains & subdomains gathering☆191Jan 30, 2026Updated 3 months ago
- Automated Recon Tool Installer☆16Jun 29, 2022Updated 3 years ago
- ☆15Mar 21, 2025Updated last year
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- 🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.☆4,959Updated this week
- ☆19Jan 24, 2023Updated 3 years ago
- XSS Payload without Anything.☆105Jun 28, 2019Updated 6 years ago
- GetSimple CMS Custom JS Plugin Exploit RCE Chain☆11Mar 8, 2023Updated 3 years ago
- ☆29Dec 13, 2023Updated 2 years ago
- ParamScan is a chrome extension for finding reflected parameters in a webpage.☆92Jan 11, 2025Updated last year
- Some of the gf patterns which i use☆44Jan 19, 2022Updated 4 years ago