xsschecker tests endpoints for reflected XSS by injecting payloads and checking responses. It prints vulnerable if the payload is reflected, otherwise not vulnerable.
☆36Nov 3, 2025Updated 4 months ago
Alternatives and similar repositories for xsschecker
Users that are interested in xsschecker are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A powerful URL parameter and request fuzzing tool that processes URLs or Burp Suite raw requests, replacing values with custom payloads w…☆19Nov 25, 2025Updated 3 months ago
- Simple XSS vulnerability checker tool very useful with xsschecker.☆28Nov 21, 2025Updated 4 months ago
- A powerful subdomain enumeration tool that aggregates data from multiple sources to create comprehensive lists of root subdomains.☆47Dec 19, 2025Updated 3 months ago
- OpenRedirector is a powerful automation tool for detecting Open Redirect vulnerabilities in web applications☆17Oct 30, 2025Updated 4 months ago
- GarudRecon automates domain recon with top open-source tools to discover assets, enumerate subdomains, and detect XSS, SQLi, LFI, RCE & m…☆198Jan 24, 2026Updated 2 months ago
- Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations☆395Jun 17, 2020Updated 5 years ago
- Graphql introspection query analyzer.☆18Mar 28, 2023Updated 2 years ago
- Dig through the Wayback Machine and find sensitive or forgotten files exposed by web servers over time.☆27Mar 27, 2025Updated 11 months ago
- my nuclei templates #new☆11Jun 24, 2024Updated last year
- Looks for parameters in urls☆34Oct 14, 2024Updated last year
- Python script that generates Visual Basic Script (VBS) stagers for executing PowerShell scripts directly from specified URLs. It provides…☆13May 19, 2024Updated last year
- Analyze Content-Security-Policy header of a given URL.☆33Jan 10, 2024Updated 2 years ago
- Scanner for Log4j RCE CVE-2021-44228☆11Jul 6, 2022Updated 3 years ago
- ASNPepper - Recon in ASN - Extracting CIDR's - Fast and efficient scanning☆19Oct 27, 2024Updated last year
- Automatically look for paramater reflections in the HTTP response☆17Apr 30, 2025Updated 10 months ago
- CVE-2024-32640 | Automated SQLi Exploitation PoC☆78May 16, 2024Updated last year
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing☆34Aug 21, 2024Updated last year
- List of Fresh DNS resolvers updates every 1 hour☆19Updated this week
- Extract endpoints from source files.☆25Mar 28, 2023Updated 2 years ago
- A list of useful payloads and bypass for Web Application Security and Pentest/CTF☆22Feb 26, 2021Updated 5 years ago
- Template Nuclei SSTI☆34Nov 18, 2025Updated 4 months ago
- Community curated list of templates for the nuclei engine to find security vulnerabilities.☆83Nov 24, 2025Updated 4 months ago
- Automated enumeration for red teamers☆11Nov 22, 2022Updated 3 years ago
- ☆14Nov 8, 2024Updated last year
- This Repositories contains list of One Liners with Descriptions and Installation requirements☆502Jun 28, 2025Updated 8 months ago
- Useful scripts for tampermonkey that I used during bug hunting. Will be updated "au fil de l'eau"☆17Jun 2, 2025Updated 9 months ago
- Port scanning is crucial in recon, but running it manually on big scopes? Nope. That’s why I made Nmap Bomber a Python script that runs f…☆40Jul 31, 2025Updated 7 months ago
- Hidden input parameters finder☆19Jul 10, 2023Updated 2 years ago
- Gampung tools for find nuclei template from github☆12Sep 6, 2023Updated 2 years ago
- Some oneliners with descriptions and Regex that I frequently use while doing bug hunting. More to come 🚀🚀☆22Dec 24, 2022Updated 3 years ago
- ☆20Jun 26, 2024Updated last year
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆37Jul 27, 2025Updated 7 months ago
- Advanced Time-based Blind SQL Injection fuzzer for HTTP Headers☆312Mar 31, 2024Updated last year
- Simple tool to scan a website for (DOM-based) XSS vulnerabilities and Open Redirects.☆255Feb 10, 2025Updated last year
- ☆25Jan 15, 2024Updated 2 years ago
- Javascript sourcemaps enumeration tool☆15Dec 19, 2024Updated last year
- ParamScan is a chrome extension for finding reflected parameters in a webpage.☆92Jan 11, 2025Updated last year
- ☆18Apr 26, 2025Updated 10 months ago
- ☆173Nov 20, 2025Updated 4 months ago