BruteXSS is a tool written in python simply to find XSS vulnerabilities in web application. This tool was originally developed by Shawar Khan in CLI. I just redesigned it and made it GUI for more convienience.
☆565Jun 17, 2021Updated 4 years ago
Alternatives and similar repositories for BruteXSS
Users that are interested in BruteXSS are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications…☆1,438Sep 17, 2024Updated last year
- A unique automated LFi Exploiter with Bind/Reverse Shells☆311Jun 25, 2015Updated 10 years ago
- XSS spider - 66/66 wavsep XSS detected☆1,740Jun 13, 2024Updated last year
- The Hacker's ToolBox☆193Jun 29, 2017Updated 8 years ago
- Most advanced XSS scanner.☆14,959Apr 26, 2025Updated last year
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- WebDigger is a python based tool, specially created to get a company's unknown domain for pentestor.☆17Aug 6, 2016Updated 9 years ago
- Local file inclusion exploitation tool☆956May 12, 2026Updated last week
- Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.☆1,747Dec 1, 2024Updated last year
- ☆334Jan 8, 2018Updated 8 years ago
- Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner☆1,941Apr 13, 2022Updated 4 years ago
- This tool can be used to brute discover GET and POST parameters☆1,396Aug 24, 2019Updated 6 years ago
- Opinionated organisation-centric OSINT footprinting inspired from recon-ng and Maltego☆180Jul 29, 2017Updated 8 years ago
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆4,155Apr 21, 2024Updated 2 years ago
- From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras☆426Feb 18, 2020Updated 6 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Web application fuzzer☆6,489Jan 21, 2026Updated 4 months ago
- ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.☆2,279Jan 8, 2026Updated 4 months ago
- Burp plugin to do random fuzzing of HTTP requests☆33Jan 31, 2017Updated 9 years ago
- Joomla! Core 1.5.0 - 3.9.4 - Directory Traversal / Authenticated Arbitrary File Deletion in Python3☆29Feb 27, 2023Updated 3 years ago
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆5,731Jan 5, 2026Updated 4 months ago
- An automatic XSS discovery tool☆414Apr 17, 2018Updated 8 years ago
- Correlated injection proxy tool for XSS Hunter☆259Dec 26, 2022Updated 3 years ago
- A Tool for Domain Flyovers☆5,937May 22, 2022Updated 4 years ago
- ☆2,326Dec 8, 2023Updated 2 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Username tools for penetration testing☆1,392Sep 20, 2024Updated last year
- kadimus is a tool to check and exploit lfi vulnerability.☆572Aug 17, 2020Updated 5 years ago
- WAFNinja is a tool which contains two functions to attack Web Application Firewalls.☆824Dec 6, 2017Updated 8 years ago
- Automated NoSQL database enumeration and web application exploitation tool.☆3,288Feb 20, 2026Updated 3 months ago
- File upload vulnerability scanner and exploitation tool.☆3,319May 8, 2025Updated last year
- A swiss army knife for pentesting networks☆9,131Dec 6, 2023Updated 2 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,802Apr 26, 2024Updated 2 years ago
- A fast DOM based XSS vulnerability scanner with simplicity.☆858Sep 30, 2022Updated 3 years ago
- WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.☆6,342Apr 19, 2026Updated last month
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- XssPy - Web Application XSS Scanner☆844Jan 20, 2023Updated 3 years ago
- Damn Small XSS Scanner☆430Dec 1, 2020Updated 5 years ago
- A default credential scanner.☆1,505Jul 8, 2025Updated 10 months ago
- massive SQL injection vulnerability scanner☆1,229Aug 14, 2018Updated 7 years ago
- OWASP Joomla Vulnerability Scanner Project https://www.secologist.com/☆1,187Sep 11, 2024Updated last year
- PowerShell Pass The Hash Utils☆1,764Dec 9, 2018Updated 7 years ago
- Fast subdomains enumeration tool for penetration testers☆10,929Aug 2, 2024Updated last year