XSStrike

Python script for automated XSS hunting

#Repo
git clone https://github.com/s0md3v/XSStrike.git

#Usage
python3 xsstrike.py -u 'https://www.example.com/?attachment_id=FUZZ' (single target)

python3 xsstrike.py -u 'https://www.example.com/?attachment_id=1' --fuzzer (FUZZ param)

python3 xsstrike.py -u https://test.com/?s= -f xss-payloads.txt (custom payloads)

for i in $(cat params.txt);do python3 xsstrike.py -u $i; done (multiple targets)

PreviousGxss NextEmbed XSS payload into image file

Last updated 11 months ago