xsschecker tests endpoints for reflected XSS by injecting payloads and checking responses. It prints vulnerable if the payload is reflected, otherwise not vulnerable.
☆36Nov 3, 2025Updated 4 months ago
Alternatives and similar repositories for xsschecker
Users that are interested in xsschecker are comparing it to the libraries listed below
Sorting:
- A powerful URL parameter and request fuzzing tool that processes URLs or Burp Suite raw requests, replacing values with custom payloads w…☆19Nov 25, 2025Updated 3 months ago
- Simple XSS vulnerability checker tool very useful with xsschecker.☆28Nov 21, 2025Updated 3 months ago
- OpenRedirector is a powerful automation tool for detecting Open Redirect vulnerabilities in web applications☆17Oct 30, 2025Updated 4 months ago
- GarudRecon automates domain recon with top open-source tools to discover assets, enumerate subdomains, and detect XSS, SQLi, LFI, RCE & m…☆194Jan 24, 2026Updated last month
- Python script that generates Visual Basic Script (VBS) stagers for executing PowerShell scripts directly from specified URLs. It provides…☆13May 19, 2024Updated last year
- A powerful subdomain enumeration tool that aggregates data from multiple sources to create comprehensive lists of root subdomains.☆45Dec 19, 2025Updated 2 months ago
- Graphql introspection query analyzer.☆18Mar 28, 2023Updated 2 years ago
- Analyze Content-Security-Policy header of a given URL.☆33Jan 10, 2024Updated 2 years ago
- Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations☆394Jun 17, 2020Updated 5 years ago
- Template Nuclei SSTI☆34Nov 18, 2025Updated 3 months ago
- Dig through the Wayback Machine and find sensitive or forgotten files exposed by web servers over time.☆27Mar 27, 2025Updated 11 months ago
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing☆34Aug 21, 2024Updated last year
- Looks for parameters in urls☆34Oct 14, 2024Updated last year
- Hidden input parameters finder☆19Jul 10, 2023Updated 2 years ago
- Extract endpoints from source files.☆25Mar 28, 2023Updated 2 years ago
- CVE-2024-32640 | Automated SQLi Exploitation PoC☆77May 16, 2024Updated last year
- Some oneliners with descriptions and Regex that I frequently use while doing bug hunting. More to come 🚀🚀☆22Dec 24, 2022Updated 3 years ago
- Useful scripts for tampermonkey that I used during bug hunting. Will be updated "au fil de l'eau"☆17Jun 2, 2025Updated 9 months ago
- This PowerShell script applies a memory patch to bypass the Antimalware Scan Interface (AMSI), allowing unrestricted execution of PowerSh…☆14Jun 2, 2024Updated last year
- ☆14Nov 8, 2024Updated last year
- my nuclei templates #new☆11Jun 24, 2024Updated last year
- WP Juicer Tool for quick scanning of confidential information on WordPress endpoints.☆10Apr 30, 2024Updated last year
- Scanner for Log4j RCE CVE-2021-44228☆11Jul 6, 2022Updated 3 years ago
- ☆12Aug 25, 2023Updated 2 years ago
- Community curated list of templates for the nuclei engine to find security vulnerabilities.☆81Nov 24, 2025Updated 3 months ago
- This Repositories contains list of One Liners with Descriptions and Installation requirements☆500Jun 28, 2025Updated 8 months ago
- ☆13Sep 8, 2024Updated last year
- AI modular structure that provides automation-based attack and penetration☆14May 10, 2024Updated last year
- Trojan written in C++ for Windows☆20Mar 12, 2024Updated last year
- Mrco24-Lfi-Scanner is a high-speed Local File Inclusion (LFI) vulnerability scanning tool developed in the Go programming language. It's …☆13Dec 16, 2023Updated 2 years ago
- This python based tool can be used to discover API keys, access tokens, and other sensitive data in JavaScript files. It can scan JavaScr…☆14Oct 18, 2024Updated last year
- ☆28Jan 6, 2024Updated 2 years ago
- Compilation of scripts/tools (made by me or not) that help me with Pentest and Bug Bounty.☆26Dec 22, 2025Updated 2 months ago
- Simple tool to scan a website for (DOM-based) XSS vulnerabilities and Open Redirects.☆255Feb 10, 2025Updated last year
- SubOwner - A Simple tool check for subdomain takeovers.☆116Oct 18, 2024Updated last year
- web based c2 🏴☠️☆15Aug 10, 2024Updated last year
- Gampung tools for find nuclei template from github☆12Sep 6, 2023Updated 2 years ago
- CORSER is a Golang CLI Application for Advanced CORS Misconfiguration Detection☆60Oct 26, 2024Updated last year
- Web-See is Tool For Checkout Status Of Urls in Mass Its For Bug Bounty Hunters And Black Hat Hackers It Will Save Your Valuable Time Scr…☆15Jun 25, 2022Updated 3 years ago