BruteXSS is a tool written in python simply to find XSS vulnerabilities in web application. This tool was originally developed by Shawar Khan in CLI. I just redesigned it and made it GUI for more convienience.
☆561Jun 17, 2021Updated 4 years ago
Alternatives and similar repositories for BruteXSS
Users that are interested in BruteXSS are comparing it to the libraries listed below
Sorting:
- Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications…☆1,423Sep 17, 2024Updated last year
- A unique automated LFi Exploiter with Bind/Reverse Shells☆299Jun 25, 2015Updated 10 years ago
- XSS spider - 66/66 wavsep XSS detected☆1,742Jun 13, 2024Updated last year
- Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner☆1,916Apr 13, 2022Updated 3 years ago
- ☆332Jan 8, 2018Updated 8 years ago
- The Hacker's ToolBox☆191Jun 29, 2017Updated 8 years ago
- Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.☆1,716Dec 1, 2024Updated last year
- Most advanced XSS scanner.☆14,787Apr 26, 2025Updated 10 months ago
- Local file inclusion exploitation tool☆930Oct 1, 2025Updated 5 months ago
- Opinionated organisation-centric OSINT footprinting inspired from recon-ng and Maltego☆179Jul 29, 2017Updated 8 years ago
- This tool can be used to brute discover GET and POST parameters☆1,393Aug 24, 2019Updated 6 years ago
- WebDigger is a python based tool, specially created to get a company's unknown domain for pentestor.☆17Aug 6, 2016Updated 9 years ago
- From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras☆426Feb 18, 2020Updated 6 years ago
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆4,123Apr 21, 2024Updated last year
- ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.☆2,244Jan 8, 2026Updated 2 months ago
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆5,655Jan 5, 2026Updated 2 months ago
- Web application fuzzer☆6,434Jan 21, 2026Updated last month
- An automatic XSS discovery tool☆412Apr 17, 2018Updated 7 years ago
- kadimus is a tool to check and exploit lfi vulnerability.☆563Aug 17, 2020Updated 5 years ago
- ☆2,319Dec 8, 2023Updated 2 years ago
- Automated NoSQL database enumeration and web application exploitation tool.☆3,240Feb 20, 2026Updated 2 weeks ago
- WAFNinja is a tool which contains two functions to attack Web Application Firewalls.☆823Dec 6, 2017Updated 8 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,779Apr 26, 2024Updated last year
- A default credential scanner.☆1,503Jul 8, 2025Updated 8 months ago
- A Tool for Domain Flyovers☆5,904May 22, 2022Updated 3 years ago
- Damn Small XSS Scanner☆431Dec 1, 2020Updated 5 years ago
- A Ruby framework designed to aid in the penetration testing of WordPress systems.☆1,044Nov 24, 2019Updated 6 years ago
- A swiss army knife for pentesting networks☆9,086Dec 6, 2023Updated 2 years ago
- Burp plugin to do random fuzzing of HTTP requests☆33Jan 31, 2017Updated 9 years ago
- massive SQL injection vulnerability scanner☆1,231Aug 14, 2018Updated 7 years ago
- File upload vulnerability scanner and exploitation tool.☆3,302May 8, 2025Updated 10 months ago
- Server-side request forgery detector☆164Jun 26, 2017Updated 8 years ago
- OWASP Joomla Vulnerability Scanner Project https://www.secologist.com/☆1,173Sep 11, 2024Updated last year
- Automatic SSRF fuzzer and exploitation tool☆3,493Sep 4, 2025Updated 6 months ago
- Correlated injection proxy tool for XSS Hunter☆259Dec 26, 2022Updated 3 years ago
- Knock Subdomain Scan☆4,145Feb 19, 2026Updated 2 weeks ago
- SQL Injection Exploitation Tool☆809Jan 4, 2019Updated 7 years ago
- Network Infrastructure Penetration Testing Tool☆1,668Jun 2, 2021Updated 4 years ago
- Username tools for penetration testing☆1,334Sep 20, 2024Updated last year