LazyXSS is a powerful and efficient Python tool designed to automate the detection and confirmation of reflected Cross-Site Scripting (XSS) vulnerabilities in web applications. It meticulously tests all GET parameters found in provided URLs, supports scanning multiple targets from a file, and generates comprehensive, multi-page HTML reports with a modern UI.

• Comprehensive Parameter Testing: Automatically identifies and tests all GET parameters within each URL.
• Reflected XSS Focus: Detects vulnerabilities where payloads are reflected in the HTTP response.
• Selenium Confirmation: Uses headless Chrome/Chromium via Selenium to confirm vulnerabilities by detecting JavaScript alert execution, reducing false positives.
• Multi-threaded Scanning: Leverages threading for faster scanning of multiple URL variations.
• Configurable Concurrency: Fine-tune performance with separate controls for overall threads (-t) and concurrent Selenium browser instances (--selenium-workers).
• Modern HTML Reporting: Generates detailed, paginated HTML reports with a futuristic dashboard UI for confirmed vulnerabilities.
• Basic WAF Detection: Attempts to identify common WAFs (Cloudflare, Akamai, Generic Blocks) that might interfere with scanning.
• Proxy Support: Route HTTP requests (excluding Selenium) through an HTTP/HTTPS proxy.
• Payload Encoding: Supports URL-encoding payloads multiple times (-e).
• Customizable Timeout: Adjust the timeout for Selenium checks (-T).
• Explicit Chrome Path: Specify the path to your Chrome/Chromium executable if automatic detection fails (--chrome-path).
• Save Report on Interrupt: Attempts to save the current findings to the HTML report if the scan is interrupted (Ctrl+C) and vulnerabilities were found.
• Randomized User-Agents: Uses common user agents randomly for HTTP requests.

Note: This video may show an older version of the tool.

• Python 3.x
• pip (Python package installer)
• Google Chrome or Chromium browser installed.

1. Update System & Install Dependencies:

   sudo apt update && sudo apt upgrade -y
   sudo apt install python3 python3-pip git wget -y

2. Install Google Chrome / Chromium:
   • Chromium (Recommended for servers/headless):

     sudo apt install chromium-browser -y

   • Google Chrome (Alternative): Download the .deb package from Google and install it:

     wget https://dl.google.com/linux/direct/google-chrome-stable_current_amd64.deb
     sudo apt install ./google-chrome-stable_current_amd64.deb -y
     rm google-chrome-stable_current_amd64.deb

3. Clone the Repository:

   git clone https://github.com/Iamunixtz/lazyXss.git
   cd lazyXss

4. Install Python Requirements:

   pip3 install -r requirements.txt

1. Install Python 3.x from python.org (ensure "Add Python to PATH" is checked during installation).
2. Install Google Chrome.
3. Open Command Prompt or PowerShell.
4. Clone the Repository:

   git clone https://github.com/Iamunixtz/lazyXss.git
   cd lazyXss

5. Install Python Requirements:

   pip install -r requirements.txt

6. (Important): If the script shows Chrome Version: N/A, you likely need to use the --chrome-path argument to specify the full path to your chrome.exe (see Usage).

SYNOPSIS
  python3 lazyxssX53x.py [OPTIONS]

DESCRIPTION
  High-speed XSS scanner with HTTP reflection and Selenium verification.
  Tests all GET parameters in provided URLs and generates a futuristic
  HTML report if vulnerabilities are found.

OPTIONS
  -u, --url URL          Specify a single URL to test.
  -f, --file FILE        Specify a file containing URLs (one per line).
  -p, --payloads FILE    Specify the payload file (default: payloads.txt).
  -t, --threads INT      Number of concurrent URL processing threads (default: 20).
  -e, --encoding INT     Number of times to URL-encode the payloads (default: 0).
  -o, --output FILE      Output file for vulnerable URLs (default: result.txt).
                         HTML report uses this base name (e.g., result_page_1.html).
  -T, --time-sec INT     Timeout in seconds for Selenium checks (default: 2).
  --chrome-path PATH   Specify the full path to the chrome/chromium executable.
                         (Use if automatic detection fails)
  --selenium-workers INT Number of concurrent Selenium browser instances (default: 5).
                         Increase cautiously based on system resources.
  --proxy URL          Specify a proxy server (e.g., http://127.0.0.1:8080).
                         (Note: Affects HTTP requests, not Selenium checks).
  -h, --help             Show this help message and exit.

EXAMPLES
  Scan a single URL (multiple parameters):
    python3 lazyxssX53x.py -u "http://test.com?q=test&debug=0" -p pay.txt

  Scan multiple URLs from a file:
    python3 lazyxssX53x.py -f urls.txt -p payloads.txt -o results.txt

  Scan using a specific Chrome path (Windows Example):
    python3 lazyxssX53x.py -u "http://example.com?id=1" --chrome-path "C:\Program Files\Google\Chrome\Application\chrome.exe"

  Scan using an HTTP Proxy:
    python3 lazyxssX53x.py -f urls.txt --proxy http://127.0.0.1:8080

  Scan with increased Selenium concurrency:
    python3 lazyxssX53x.py -f urls.txt -t 30 --selenium-workers 10

If vulnerabilities are confirmed via Selenium, a multi-page HTML report (<output_filename>_page_N.html) is generated using a futuristic dashboard theme. The report includes summary statistics and a paginated list of vulnerable URLs and payloads.

• Reflected XSS: This tool primarily focuses on reflected XSS and confirms findings using Selenium's alert detection. It does not currently perform advanced DOM XSS analysis.
• Chrome Path: If you see Chrome Version: N/A, the script couldn't find Chrome automatically. Use the --chrome-path argument to provide the full path to your chrome.exe or chromium-browser executable.
• Resource Usage: Selenium can be resource-intensive. Monitor your CPU/RAM when using high numbers for --selenium-workers.
• WAF Detection: WAF detection is basic and might not identify all WAFs or may have false positives.
• Proxy Limitation: The --proxy option currently only affects HTTP requests made by the requests library (like reflection checks and WAF detection), not the Selenium browser instances.
• Ethical Use: This tool is intended for educational purposes and authorized security testing only. Always obtain permission before scanning any website you do not own.

Contributions are welcome! Feel free to submit issues or pull requests to help improve LazyXSS.

If you find this tool helpful, consider supporting my work:

Author: Iamunixtz | GitHub | Twitter/X