xss development frameworks, with the goal of making payload writing easier.
☆159Aug 7, 2024Updated last year
Alternatives and similar repositories for xsstools
Users that are interested in xsstools are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- PwnMachine is a self hosting solution based on docker aiming to provide an easy to use pwning station for bug hunters.☆328Jul 31, 2024Updated last year
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆645Jul 7, 2025Updated 11 months ago
- OWASP Amass data source scripts (assetfinder, findomain, github, subfinder)☆105Oct 18, 2020Updated 5 years ago
- Generate a dynamic PAC script that will route traffic to your Burp proxy only if it matches the scope defined in your Burp target.☆34Nov 8, 2021Updated 4 years ago
- DNS and Target HTTP History Local Storage and Search☆63Feb 14, 2021Updated 5 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- PP-finder Help you find gadget for prototype pollution exploitation☆205May 15, 2026Updated 3 weeks ago
- PwnFox is a Firefox/Burp extension that provide usefull tools for your security audit.☆1,325Aug 7, 2024Updated last year
- a tool that compiles a csv of all h1 program stats☆50Jul 2, 2023Updated 2 years ago
- A collection of scripts for bug-bounty related stuff☆39Sep 4, 2020Updated 5 years ago
- automated web assets enumeration & scanning [DEPRECATED]☆288Mar 7, 2023Updated 3 years ago
- A fast & light web screenshot without headless browser but Chrome DevTools Protocol!☆185Jun 1, 2026Updated last week
- Fetch web pages using headless Chrome, storing all fetched resources including JavaScript files. Run arbitrary JavaScript on many web pag…☆530Apr 23, 2025Updated last year
- ☆438Jun 1, 2021Updated 5 years ago
- 🐙 Cross-document messaging security research tool powered by https://enso.security☆302May 22, 2023Updated 3 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Contextual Content Discovery Tool☆3,187Apr 29, 2024Updated 2 years ago
- ☆299Jul 16, 2022Updated 3 years ago
- A tool to find redirection chains in multiple URLs☆79Jan 1, 2025Updated last year
- Prototype Pollution Scanner☆143Apr 11, 2021Updated 5 years ago
- ☆210Updated this week
- A python tool used to discover endpoints, potential parameters, a target specific wordlist for a given target and secrets☆1,563Mar 8, 2026Updated 3 months ago
- Electron JS Browser To Find XSS Vulnerabilities Automatically☆750Mar 30, 2021Updated 5 years ago
- User enumeration and password spraying tool for testing Azure AD☆71Mar 3, 2022Updated 4 years ago
- Smart ssrf scanner using different methods like parameter brute forcing in post and get...☆277Feb 11, 2021Updated 5 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆977Dec 31, 2021Updated 4 years ago
- Nuclei templates written by geeknik. Claude is my co-pilot. 🤖☆303Feb 24, 2026Updated 3 months ago
- Turns any junk text into a usable wordlist for brute-forcing.☆227Mar 16, 2024Updated 2 years ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆58Sep 6, 2021Updated 4 years ago
- jaVasCript:/*-/*`/*\`/*'/*"/**/(/* */oNcliCk=alert() )//%0D%0A%0d%0a//</stYle/</titLe/</teXtarEa/</scRipt/--!>\x3csVg/<sVg/oNloAd=alert()…☆11Apr 9, 2021Updated 5 years ago
- A repo for tools, utils, and wrappers that are to small to put in their own repo.☆23Mar 18, 2023Updated 3 years ago
- This extension replaces the default repeater tab name with the URL path of the repeater request.☆25Sep 3, 2021Updated 4 years ago
- Detects request smuggling via HTTP/2 downgrades.☆94Jul 30, 2022Updated 3 years ago
- a javascript change monitoring tool for bugbounties☆727Jul 31, 2024Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Related subdomains finder☆27May 18, 2022Updated 4 years ago
- An automated, reliable scanner for the Log4Shell (CVE-2021-44228) vulnerability.☆46Jan 22, 2025Updated last year
- ☆698Jul 4, 2022Updated 3 years ago
- BBT - Bug Bounty Tools (examples💡)☆1,896Apr 5, 2024Updated 2 years ago
- A projectdiscovery driven attack surface monitoring bot powered by axiom☆190Aug 11, 2022Updated 3 years ago
- research☆151Mar 21, 2024Updated 2 years ago
- Tool for making it easy to collect dns results from the CLI☆40Aug 14, 2024Updated last year