Skip to content
forked from s0md3v/XSStrike

XSS Scanner equipped with powerful fuzzing engine & intelligent payload generator

License

Notifications You must be signed in to change notification settings

kelrose/XSStrike

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

XSStrike python license version

banner

XSStrike is an advanced XSS detection suite. It has a powerful fuzzing engine and provides zero false positive result using fuzzy matching. XSStrike is the first XSS scanner to generate its own payloads. It is intelligent enough to detect and break out of various contexts.

Made with heart by Somdev Sangwan

Features

  • Powerful fuzzing engine
  • Context breaking technology
  • Intelligent payload generation
  • GET & POST method support
  • Cookie Support
  • WAF Fingerprinting
  • Hand crafted payloads for filter and WAF evasion
  • Hidden parameter discovery
  • Accurate results via levenshtein distance algorithm

To know more visit xsstrike.tk

Note: XSStrike isn't compatible with Python2 anymore, please use python3 xsstrike to run it.
Changelog contains the changes made to XSStrike after the XSStrike v2.0 pre-beta release.

Screenshots

ss1

ss2

ss3

ss4

License

XSStrike is licensed under MIT license.

About

XSS Scanner equipped with powerful fuzzing engine & intelligent payload generator

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages

  • Python 100.0%