rix4uni / xssreconLinks
XSSRecon automates the process of testing URL parameters for reflection of a test payload rix4uni and further checks how special characters are handled (allowed, blocked, or converted).
☆27Updated last month
Alternatives and similar repositories for xssrecon
Users that are interested in xssrecon are comparing it to the libraries listed below
Sorting:
- This script is used to search for cloud certificate entities such as Amazon, Azure, and others that have been extracted by the kaeferjaeg…☆48Updated 10 months ago
- IDOR Scanner is a Burp Suite extension that automates the detection and enumeration of potentially vulnerable numeric fields to identify …☆39Updated 7 months ago
- Bypass Reset Password Code Lead to Account Takeover☆26Updated last year
- JScripter is a Python script designed to scrape and save unique JavaScript files from a list of URLs or a single URL.☆28Updated 10 months ago
- Url scrapper or extractor from alienvault☆34Updated 7 months ago
- Zzl is a reconnaissance tool that collects subdomains from SSL certificates in IP ranges☆44Updated 11 months ago
- Morgan is a powerful tool designed to help security researchers, developers, and security auditors identify sensitive information, vulner…☆56Updated 8 months ago
- BugBoard: A comprehensive open-source cybersecurity tool for vulnerability detection and bug hunting.☆31Updated 6 months ago
- Grep subdomains from web pages.☆45Updated 8 months ago
- xsschecker tests endpoints for reflected XSS by injecting payloads and checking responses. It prints vulnerable if the payload is reflect…☆37Updated last month
- A basic tool to check for XSS vulnerabilities. It takes a list of URLs and checks if the parameter values appear in the response.☆28Updated last year
- 🔍 SubWatch – Automated Subdomain Monitoring Script☆38Updated 4 months ago
- NextSploit is a command-line tool designed to detect and exploit CVE-2025-29927, a security flaw in Next.js☆73Updated 6 months ago
- Passive Web Vulnerability Detection Tool☆36Updated 5 months ago
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆45Updated last year
- This tool automates the process of running FFUF (Fuzz Faster U Fool) and post-processing its results to extract valid URLs. It supports b…☆35Updated 11 months ago
- Firebase_Checker is Python tool to analyze APK files and web applications for Firebase-related vulnerabilities. This tool identifies secu…☆46Updated 3 weeks ago
- POC for CVE-2024-40348. Will attempt to read /etc/passwd from target☆32Updated last year
- A simple browser extension to quickly find interesting security-related information on a webpage.☆96Updated this week
- ☆48Updated last year
- Collection of templates from various resources☆39Updated this week
- CrlfiX☆20Updated 8 months ago
- A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS API☆75Updated 8 months ago
- crawler for finding reflected parameters and reflecting special characters!☆18Updated 10 months ago
- ParamScan is a chrome extension for finding reflected parameters in a webpage.☆88Updated 9 months ago
- anveshan is a completed script that helps to automate your recon process, It finds subdomains, urls, js files, parameters, screenshots, a…☆30Updated 11 months ago
- ☆86Updated 7 months ago
- A Lightning-Fast DNS Resolver written in Rust 🦀☆68Updated 11 months ago
- Backup Files Wordlist Generator - generate a comprehensive list of potential backup file Wordlist based on a given list URL and backup fi…☆84Updated 3 months ago
- subfalcon is a subdomain enumeration tool that allows you to discover and monitor subdomains for a given list of domains or a single doma…☆52Updated 10 months ago