一个burpsuite插件,用于被动检测可能存在的XSS漏洞的请求。后续将完善对于可以请求的xss探针、xss攻击以及DOM型xss检测。
☆16Dec 26, 2018Updated 7 years ago
Alternatives and similar repositories for XSS-Detect
Users that are interested in XSS-Detect are comparing it to the libraries listed below
Sorting:
- BurpSuite Rpc 算法转发插件☆17Jan 4, 2023Updated 3 years ago
- BurpSuite插件,调用外部js处理payload,可以有效解决前端js对某些字段加密的问题,以及做fuzz时,处理逻辑可以在js文件中定义,不必写python、java等代码,灵活高效,你值得拥有。☆28Aug 20, 2020Updated 5 years ago
- 一款被动扫描ssrf的burpsuite插件☆21Dec 30, 2022Updated 3 years ago
- phpweb 前台任意文件上传☆16Jan 9, 2020Updated 6 years ago
- 一个Burpsuite插件,用于检测隐藏的XSS☆40Mar 31, 2019Updated 6 years ago
- 简单的sql和xss探测burp插件☆18Jun 25, 2022Updated 3 years ago
- 一款集PoC批量验证和漏洞攻击的渗透测试工具☆47Aug 22, 2018Updated 7 years ago
- Burpsuite插件:被动进行未授权访问或越权操作的扫描☆21Aug 28, 2021Updated 4 years ago
- Find sources and sinks in js code that could lead to DOM XSS 🔎💧🚰☆23Feb 27, 2024Updated 2 years ago
- 过各waf注入上传等☆25Mar 23, 2018Updated 7 years ago
- shiro反序列化检测(只是个玩具23333)☆10Jan 16, 2024Updated 2 years ago
- ☆26Jun 19, 2022Updated 3 years ago
- 🐍 The Offensive Python☆20Jun 4, 2021Updated 4 years ago
- Burp Suite参数收集插件(Python)☆27Dec 10, 2021Updated 4 years ago
- 个人使用的一款Web CMS指纹扫描器☆25Aug 4, 2020Updated 5 years ago
- 基于AI的BurpSuite漏洞分析插件☆11Sep 21, 2023Updated 2 years ago
- A collection of client-side libraries with HTML injection vulnerabilities and DOM clobbering gadgets.☆48Aug 31, 2025Updated 6 months ago
- 前端未授权访问检测工具,自动提取JS泄露的接口进行测试。☆35Aug 25, 2023Updated 2 years ago
- Chrome extension that finds DOM based XSS vulnerabilities☆75Jun 3, 2025Updated 8 months ago
- PHP技巧☆10Oct 25, 2019Updated 6 years ago
- 自动生成frida hook 打码插件☆39Nov 4, 2023Updated 2 years ago
- Bypass国内主流杀软☆42May 9, 2022Updated 3 years ago
- 一个基于JSRPC实现的自动解密代理框架☆13Sep 28, 2023Updated 2 years ago
- 实时 SFTP 同步工具(单向)☆13May 4, 2018Updated 7 years ago
- 存放投稿里的一些文件☆11Oct 31, 2020Updated 5 years ago
- FastjsonScan,支持版本识别、出网检测、AutoType检测、依赖检测,poc验证等功能☆13Jun 17, 2025Updated 8 months ago
- 《Ruby 基础教程(第5版�)》☆10Jan 12, 2018Updated 8 years ago
- Fake框架的自动化Fuzz WAF/IDS 功能☆84Sep 19, 2019Updated 6 years ago
- 记录一些国外漏洞赏金猎人的挖洞技巧和一些有意思的东西☆39Dec 4, 2019Updated 6 years ago
- Go语言实现命令行版飞秋☆13Nov 26, 2018Updated 7 years ago
- Maltego transforms for the Steam community☆12Aug 5, 2017Updated 8 years ago
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆11Sep 22, 2023Updated 2 years ago
- Describe how to use ffuf different options with examples☆13Jun 13, 2022Updated 3 years ago
- Rexo-UI - VueJS & HTML 网站/后台管理模板☆10Nov 1, 2023Updated 2 years ago
- The Proxy Auto Configuration (PAC) file dynamic generator which allows you to specify the proxying rules and the PAC-file will be generat…☆10Dec 5, 2019Updated 6 years ago
- js_rpc通杀版本☆14Oct 9, 2021Updated 4 years ago
- Wrapper tool to identify the remote device and push device specific frida-server binary.☆10Jun 1, 2017Updated 8 years ago
- 利用nginx+flask搭建自有微博平台,并展示平台中消息扩散过程及演化过程☆10Jul 28, 2015Updated 10 years ago
- wechat android sdk☆11Jul 16, 2015Updated 10 years ago