Intelligent XSS detection tool that uses human techniques for looking for reflected cross-site scripting (XSS) vulnerabilities
☆151Dec 7, 2022Updated 3 years ago
Alternatives and similar repositories for xssmap
Users that are interested in xssmap are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Vulnerability consolidation and management tool, enhances scan results by merging different findings of the same weakness across multiple…☆24Dec 16, 2022Updated 3 years ago
- Maintaining account persistence via XSS and Oauth☆77Jan 7, 2019Updated 7 years ago
- Cross-Site Scripting (XSS) scanner. This tool helps to find possible XSS vulnerabilities. Cross platform - macOS, Linux, and Windows.☆11Mar 19, 2017Updated 9 years ago
- A Multi-Processing Tool for collecting and extracting information to an Excel file from a Burp Suite output file.☆10Apr 8, 2024Updated last year
- A simple script to detect unescaped characters in a web application for e.g. Cross Site Scripting (XSS) attacks.☆10Aug 20, 2020Updated 5 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Tool to find stored robots.txt files from the past☆19Jun 4, 2023Updated 2 years ago
- Secret and/or credential patterns used for gf.☆243Feb 10, 2023Updated 3 years ago
- ☆27Mar 18, 2020Updated 6 years ago
- bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.☆571Mar 4, 2023Updated 3 years ago
- Some contributions in the nuclei-templates repository☆62Jun 18, 2022Updated 3 years ago
- A framework for automating penetration testing using a plugin based architecture☆42May 20, 2022Updated 3 years ago
- ☆332Jan 8, 2018Updated 8 years ago
- A fast DOM based XSS vulnerability scanner with simplicity.☆857Sep 30, 2022Updated 3 years ago
- AV Bypass☆29Jan 12, 2018Updated 8 years ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.☆2,250Jan 8, 2026Updated 2 months ago
- DOM XSS scanner for Single Page Applications☆414Nov 15, 2025Updated 4 months ago
- port scanner & login credential tester☆15Mar 25, 2019Updated 7 years ago
- XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具☆270Aug 20, 2020Updated 5 years ago
- Automating XSS using Bash☆362Jan 27, 2026Updated last month
- PwnXSS: Vulnerability (XSS) scanner exploit☆809Dec 30, 2022Updated 3 years ago
- A tool to check a bunch of URLs that contain reflecting params.☆597Aug 4, 2024Updated last year
- A few SQL and XSS attack tools☆39Dec 17, 2019Updated 6 years ago
- ftpknocker is a multi-threaded scanner for finding anonymous FTP servers☆41Jul 20, 2025Updated 8 months ago
- NordVPN Threat Protection Pro™ • AdTake your cybersecurity to the next level. Block phishing, malware, trackers, and ads. Lightweight app that works with all browsers.
- A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.☆518Jun 22, 2022Updated 3 years ago
- Do some quick reconnaissance on a domain-based web-application☆13Jun 1, 2021Updated 4 years ago
- (DOM-)XSS fuzzer based on phantomjs and go.☆34Dec 18, 2014Updated 11 years ago
- This script scrapes the list of open Bug Bounty Programs from openbugbounty.org☆28Mar 22, 2022Updated 4 years ago
- A simple SSRF-testing sheriff written in Go☆336Oct 31, 2024Updated last year
- Modifed PowerSploit/PowerView to search files and match RegEx for Sensitive info (PII, PCI, Passwords, Usernames, SNMP Strings, etc.)☆14Aug 1, 2018Updated 7 years ago
- jaVasCript:/*-/*`/*\`/*'/*"/**/(/* */oNcliCk=alert() )//%0D%0A%0d%0a//</stYle/</titLe/</teXtarEa/</scRipt/--!>\x3csVg/<sVg/oNloAd=alert()…☆11Apr 9, 2021Updated 4 years ago
- BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities☆118Dec 23, 2025Updated 3 months ago
- 🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.☆426Feb 20, 2026Updated last month
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…☆1,284Aug 18, 2025Updated 7 months ago
- Nuclei Templates to reproduce Cracking the lens's Research☆130Jan 8, 2022Updated 4 years ago
- A collection of GitHub dorks for bug bounty hunters☆18Jun 24, 2022Updated 3 years ago
- Automated XSS Finder☆63Aug 7, 2013Updated 12 years ago
- Python Scanner and Exploiter of Remote File Inclusion Vulnerabilitie☆13Jan 6, 2022Updated 4 years ago
- Simple python script supported with BurpBouty profile that helps you to detect SQL injection "Error based" by sending multiple requests w…☆633Feb 22, 2026Updated last month
- ☆126Sep 2, 2019Updated 6 years ago