BruteXSS is a tool written in python simply to find XSS vulnerabilities in web application. This tool was originally developed by Shawar Khan in CLI. I just redesigned it and made it GUI for more convienience.
☆567Jun 17, 2021Updated 4 years ago
Alternatives and similar repositories for BruteXSS
Users that are interested in BruteXSS are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications…☆1,446Sep 17, 2024Updated last year
- A unique automated LFi Exploiter with Bind/Reverse Shells☆311Jun 25, 2015Updated 10 years ago
- XSS spider - 66/66 wavsep XSS detected☆1,742Jun 13, 2024Updated last year
- The Hacker's ToolBox☆193Jun 29, 2017Updated 8 years ago
- Most advanced XSS scanner.☆14,995Apr 26, 2025Updated last year
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- WebDigger is a python based tool, specially created to get a company's unknown domain for pentestor.☆17Aug 6, 2016Updated 9 years ago
- Local file inclusion exploitation tool☆966May 19, 2026Updated 3 weeks ago
- Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.☆1,752Dec 1, 2024Updated last year
- ☆334Jan 8, 2018Updated 8 years ago
- Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner☆1,941Apr 13, 2022Updated 4 years ago
- This tool can be used to brute discover GET and POST parameters☆1,395Aug 24, 2019Updated 6 years ago
- Opinionated organisation-centric OSINT footprinting inspired from recon-ng and Maltego☆180Jul 29, 2017Updated 8 years ago
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆4,163Apr 21, 2024Updated 2 years ago
- From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras☆426Feb 18, 2020Updated 6 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Web application fuzzer☆6,512Jan 21, 2026Updated 4 months ago
- ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.☆2,281Updated this week
- Burp plugin to do random fuzzing of HTTP requests☆33Jan 31, 2017Updated 9 years ago
- Joomla! Core 1.5.0 - 3.9.4 - Directory Traversal / Authenticated Arbitrary File Deletion in Python3☆29Feb 27, 2023Updated 3 years ago
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆5,744Jan 5, 2026Updated 5 months ago
- An automatic XSS discovery tool☆416Apr 17, 2018Updated 8 years ago
- Correlated injection proxy tool for XSS Hunter☆259Dec 26, 2022Updated 3 years ago
- A Tool for Domain Flyovers☆5,941May 22, 2022Updated 4 years ago
- ☆2,324Dec 8, 2023Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Username tools for penetration testing☆1,408Sep 20, 2024Updated last year
- kadimus is a tool to check and exploit lfi vulnerability.☆572Aug 17, 2020Updated 5 years ago
- WAFNinja is a tool which contains two functions to attack Web Application Firewalls.☆827Dec 6, 2017Updated 8 years ago
- Automated NoSQL database enumeration and web application exploitation tool.☆3,293Feb 20, 2026Updated 3 months ago
- File upload vulnerability scanner and exploitation tool.☆3,323May 8, 2025Updated last year
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,805Apr 26, 2024Updated 2 years ago
- A swiss army knife for pentesting networks☆9,136Dec 6, 2023Updated 2 years ago
- A fast DOM based XSS vulnerability scanner with simplicity.☆862Sep 30, 2022Updated 3 years ago
- WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.☆6,378Apr 19, 2026Updated last month
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- XssPy - Web Application XSS Scanner☆842Jan 20, 2023Updated 3 years ago
- Damn Small XSS Scanner☆429Dec 1, 2020Updated 5 years ago
- A default credential scanner.☆1,503Jul 8, 2025Updated 11 months ago
- massive SQL injection vulnerability scanner☆1,228Aug 14, 2018Updated 7 years ago
- OWASP Joomla Vulnerability Scanner Project https://www.secologist.com/☆1,189Sep 11, 2024Updated last year
- PowerShell Pass The Hash Utils☆1,774Dec 9, 2018Updated 7 years ago
- Fast subdomains enumeration tool for penetration testers☆10,953Aug 2, 2024Updated last year