pgaijin66 / XSS-PayloadsLinks
This repository holds all the list of advanced XSS payloads that can be used in penetration testing. These payloads can be loaded into XSS scanners as well.
β1,085Updated last year
Alternatives and similar repositories for XSS-Payloads
Users that are interested in XSS-Payloads are comparing it to the libraries listed below
Sorting:
- π± Powerfull XSS Scanning and Parameter analysis tool&gemβ1,293Updated 2 years ago
- This script is intended to automate your reconnaissance process in an organized fashionβ1,994Updated 4 years ago
- List of XSS Vectors/Payloadsβ1,321Updated 8 months ago
- Totally Automatic LFI Exploiter (+ Reverse Shell) and Scannerβ1,860Updated 3 years ago
- A script to set up a quick Ubuntu 17.10 x64 box with tools I use.β1,217Updated last year
- π― XML External Entity (XXE) Injection Payload Listβ1,205Updated last year
- ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.β2,118Updated last month
- Hacker101 CTF Writeupβ520Updated 3 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the acβ¦β1,750Updated last year
- The XSS Hunter service - a portable version of XSSHunter.comβ1,531Updated 2 years ago
- XSS payloads designed to turn alert(1) into P1β1,375Updated 2 years ago
- This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single locationβ1,320Updated 4 years ago
- β2,288Updated last year
- Automatic SSRF fuzzer and exploitation toolβ3,327Updated last week
- SSRF (Server Side Request Forgery) testing resourcesβ2,430Updated 11 months ago
- The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.β1,235Updated 7 months ago
- Quick SQLMap Tamper Suggesterβ1,388Updated 3 years ago
- BBT - Bug Bounty Tools (examplesπ‘)β1,842Updated last year
- Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3β2,010Updated last year
- Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applicationsβ¦β1,358Updated last year
- Burp plugin able to find reflected XSS on page in real-time while browsing on siteβ1,177Updated 4 years ago
- Open Redirect Payloadsβ633Updated 11 months ago
- DotDotPwn - The Directory Traversal Fuzzerβ1,081Updated 2 years ago
- This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attackβ736Updated 2 years ago
- π― RFI/LFI Payload Listβ614Updated last year
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies andβ¦β3,849Updated 3 years ago
- A python script that finds endpoints in JavaScript filesβ4,106Updated last year
- CMSmap is a python open source CMS scanner that automates the process of detecting security flaws of the most popular CMSs.β1,126Updated 3 years ago
- Generates permutations, alterations and mutations of subdomains and then resolves themβ2,441Updated 8 months ago
- β828Updated last year