Intelligent XSS detection tool that uses human techniques for looking for reflected cross-site scripting (XSS) vulnerabilities
☆151Dec 7, 2022Updated 3 years ago
Alternatives and similar repositories for xssmap
Users that are interested in xssmap are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Vulnerability consolidation and management tool, enhances scan results by merging different findings of the same weakness across multiple…☆24Dec 16, 2022Updated 3 years ago
- Maintaining account persistence via XSS and Oauth☆78Jan 7, 2019Updated 7 years ago
- Cross-Site Scripting (XSS) scanner. This tool helps to find possible XSS vulnerabilities. Cross platform - macOS, Linux, and Windows.☆11Mar 19, 2017Updated 9 years ago
- A Multi-Processing Tool for collecting and extracting information to an Excel file from a Burp Suite output file.☆10Apr 8, 2024Updated 2 years ago
- A simple script to detect unescaped characters in a web application for e.g. Cross Site Scripting (XSS) attacks.☆10Aug 20, 2020Updated 5 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Secret and/or credential patterns used for gf.☆245Feb 10, 2023Updated 3 years ago
- Tool to find stored robots.txt files from the past☆20Jun 4, 2023Updated 3 years ago
- ☆28Mar 18, 2020Updated 6 years ago
- bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.☆574Mar 4, 2023Updated 3 years ago
- Some contributions in the nuclei-templates repository☆63Jun 18, 2022Updated 3 years ago
- A framework for automating penetration testing using a plugin based architecture☆43May 20, 2022Updated 4 years ago
- ☆334Jan 8, 2018Updated 8 years ago
- A fast DOM based XSS vulnerability scanner with simplicity.☆862Sep 30, 2022Updated 3 years ago
- AV Bypass☆29Jan 12, 2018Updated 8 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.☆2,293Jun 5, 2026Updated last week
- DOM XSS scanner for Single Page Applications☆416Nov 15, 2025Updated 6 months ago
- XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具☆270Aug 20, 2020Updated 5 years ago
- Automating XSS using Bash☆364Jan 27, 2026Updated 4 months ago
- PwnXSS: Vulnerability (XSS) scanner exploit☆813Dec 30, 2022Updated 3 years ago
- A tool to check a bunch of URLs that contain reflecting params.☆600Aug 4, 2024Updated last year
- A few SQL and XSS attack tools☆39Dec 17, 2019Updated 6 years ago
- ftpknocker is a multi-threaded scanner for finding anonymous FTP servers☆41Jul 20, 2025Updated 10 months ago
- A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.☆519Jun 22, 2022Updated 3 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Do some quick reconnaissance on a domain-based web-application☆13Jun 1, 2021Updated 5 years ago
- (DOM-)XSS fuzzer based on phantomjs and go.☆33Dec 18, 2014Updated 11 years ago
- This script scrapes the list of open Bug Bounty Programs from openbugbounty.org☆28Mar 22, 2022Updated 4 years ago
- A simple SSRF-testing sheriff written in Go☆338Oct 31, 2024Updated last year
- Modifed PowerSploit/PowerView to search files and match RegEx for Sensitive info (PII, PCI, Passwords, Usernames, SNMP Strings, etc.)☆14Aug 1, 2018Updated 7 years ago
- jaVasCript:/*-/*`/*\`/*'/*"/**/(/* */oNcliCk=alert() )//%0D%0A%0d%0a//</stYle/</titLe/</teXtarEa/</scRipt/--!>\x3csVg/<sVg/oNloAd=alert()…☆11Apr 9, 2021Updated 5 years ago
- BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities☆123May 12, 2026Updated last month
- 🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.☆427Updated this week
- A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…☆1,296Aug 18, 2025Updated 9 months ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Nuclei Templates to reproduce Cracking the lens's Research☆132Jan 8, 2022Updated 4 years ago
- A collection of GitHub dorks for bug bounty hunters☆18Jun 24, 2022Updated 3 years ago
- Automated XSS Finder☆64Aug 7, 2013Updated 12 years ago
- Python Scanner and Exploiter of Remote File Inclusion Vulnerabilitie☆13Jan 6, 2022Updated 4 years ago
- Simple python script supported with BurpBouty profile that helps you to detect SQL injection "Error based" by sending multiple requests w…☆636May 17, 2026Updated 3 weeks ago
- ☆125Sep 2, 2019Updated 6 years ago
- pen testing scripts☆12Feb 7, 2021Updated 5 years ago