A vast collection of security tools for bug bounty, pentest and red teaming

#xss

54 results
TerminatorZ on offsec.tools
TerminatorZ

Scan for top potential vulnerabilities with known CVEs in your web applications.

#csrf   #cves   #rce   #scanner   #sqli   #xss  

ratproxy on offsec.tools
ratproxy

A semi-automated largely passive web application security audit tool.

#csrf   #proxy   #scanner   #xss  

RedTeam_toolkit on offsec.tools
RedTeam_toolkit

Open source Django offensive webapp which is keeping the best tools used in the redteaming.

#cves   #directories   #reports   #scanner   #vulnerabilities   #xss  

DVWA on offsec.tools
DVWA

Damn Vulnerable Web Application.

#fileupload   #learning   #resources   #sqli   #training   #xss  

XSSRocket on offsec.tools
XSSRocket

Written by Black Hat Ethical Hacking and #ChatGPT for offensive security and XSS attacks.

#exploits   #payloads   #xss  

Agartha on offsec.tools
Agartha

Burp Suite extension for dynamic payload generation to detect injection flaws.

#burpsuite   #lfi   #payloads   #rce   #sqli   #xss  

Weaponised XSS Payloads on offsec.tools
Weaponised XSS Payloads

XSS payloads designed to turn alert(1) into P1.

#payloads   #privesc   #vulnerabilities   #xss  

xssor2 on offsec.tools
xssor2

Hack with JavaScript.

#encoding   #online   #oob   #payloads   #xss  

Injectify on offsec.tools
Injectify

Perform advanced MiTM attacks on websites with ease.

#javascript   #mitm   #shell   #xss  

Cross-site scripting cheat sheet on offsec.tools
Cross-site scripting cheat sheet

PortSwigger XSS cheat sheet that contains many vectors that can help you bypass WAFs and filters.

#payloads   #resources   #xss  

Hackingtool on offsec.tools
Hackingtool

ALL IN ONE Hacking Tool For Hackers.

#allinone   #exploits   #framework   #network   #osint   #payloads   #secrets   #sqli   #subdomains   #wifi   #wordlists   #xss  

PortSwigger Cross-Site Scripting cheatsheet data on offsec.tools
PortSwigger Cross-Site Scripting cheatsheet data

All the XSS cheatsheet data to allow contributions from the community.

#payloads   #resources   #xss  

BurpSentinel on offsec.tools
BurpSentinel

GUI Burp Plugin to ease discovering of security holes in web applications.

#burpsuite   #payloads   #sqli   #vulnerabilities   #xss  

PostMessage_Fuzz_Tool on offsec.tools
PostMessage_Fuzz_Tool

A PostMessage fuzzing extension for Chrome.

#browser   #chrome   #postmessage   #xss  

postMessage-tracker on offsec.tools
postMessage-tracker

A Chrome Extension to track postMessage usage (url, domain and stack).

#browser   #chrome   #postmessage   #xss  

XSSwagger on offsec.tools
XSSwagger

A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks.

#scanner   #swagger   #xss  

xss2png on offsec.tools
xss2png

PNG IDAT chunks XSS payload generator.

#images   #payloads   #xss  

DOM based XSS finder on offsec.tools
DOM based XSS finder

Chrome extension that finds DOM based XSS vulnerabilities.

#browser   #chrome   #xss  

vaya-ciego-nen on offsec.tools
vaya-ciego-nen

Detect, manage and exploit Blind Cross-site scripting (XSS) vulnerabilities.

#oob   #xss  

Xss-Sql-Fuzz on offsec.tools
Xss-Sql-Fuzz

Burp Suite plugin for XSS and SQLi which add our payload to all parameters with one click.

#burpsuite   #payloads   #sqli   #xss  

rexsser on offsec.tools
rexsser

Burp Suite plugin that extracts keywords from response using and test for reflected XSS.

#burpsuite   #xss  

Shadow Workers on offsec.tools
Shadow Workers

C2 and proxy designed to help in the exploitation of XSS and malicious Service Workers.

#exploits   #xss  

BitBlinder on offsec.tools
BitBlinder

Injects custom XSS payloads on every form/request submitted to detect blind XSS.

#burpsuite   #payloads   #vulnerabilities   #xss  

XSSCon on offsec.tools
XSSCon

Simple XSS Scanner tool.

#scanner   #vulnerabilities   #xss  

XSSMap on offsec.tools
XSSMap

Detect XSS vulnerability in Web Applications.

#vulnerabilities   #xss  

Extended XSS Searcher and Finder on offsec.tools
Extended XSS Searcher and Finder

Scans for different types of XSS on a list of urls.

#scanner   #xss  

DOM XSS Scanner on offsec.tools
DOM XSS Scanner

A tool to scan source code for DOM based XSS vulnerabilities.

#vulnerabilities   #xss  

Femida on offsec.tools
Femida

Automated blind-xss search for Burp Suite.

#burpsuite   #oob   #vulnerabilities   #xss  

DOMDig on offsec.tools
DOMDig

DOM XSS scanner for Single Page Applications.

#scanner   #vulnerabilities   #xss  

BruteXSS on offsec.tools
BruteXSS

Tool written in Python simply to find XSS vulnerabilities in web application.

#vulnerabilities   #xss  

XSS Radar on offsec.tools
XSS Radar

A Chrome extension for fast and easy XSS fuzzing.

#browser   #chrome   #fuzzing   #vulnerabilities   #xss  

bXSS on offsec.tools
bXSS

bXSS is a utility which can be used identify Blind Cross-Site Scripting.

#oob   #vulnerabilities   #xss  

JSShell on offsec.tools
JSShell

An interactive multi-user web JS shell.

#exploits   #javascript   #shell   #xss  

xssValidator on offsec.tools
xssValidator

A Burp Intruder extender designed for automation and validation of XSS vulnerabilities.

#burpsuite   #vulnerabilities   #xss  

Tracy on offsec.tools
Tracy

Assists with finding all sinks and sources of a webapp and display the results in a nice way.

#browser   #chrome   #firefox   #vulnerabilities   #xss  

XSpear on offsec.tools
XSpear

Powerfull XSS Scanning and Parameter analysis tool&gem.

#exploits   #parameters   #scanner   #vulnerabilities   #xss  

XSSer on offsec.tools
XSSer

Automatic framework to detect, exploit and report XSS vulnerabilities in web-based applications.

#exploits   #framework   #scanner   #vulnerabilities   #xss  

XSS Hunter Express on offsec.tools
XSS Hunter Express

The fastest way to set up XSS Hunter to test and find blind XSS vulnerabilities.

#exploits   #oob   #xss  

ezXSS on offsec.tools
ezXSS

An easy way for penetration testers and bug bounty hunters to test (blind) XSS.

#vulnerabilities   #xss  

Sleepy Puppy on offsec.tools
Sleepy Puppy

Sleepy Puppy XSS Payload Management Framework.

#framework   #payloads   #vulnerabilities   #xss  

xsscrapy on offsec.tools
xsscrapy

Fast, thorough, XSS/SQLi spider.

#sqli   #vulnerabilities   #xss  

XSS'OR on offsec.tools
XSS'OR

Hack with JavaScript.

#exploits   #payloads   #vulnerabilities   #xss  

docem on offsec.tools
docem

Utility to embed XXE and XSS payloads in docx, odt, pptx...

#payloads   #xss   #xxe  

Ground control on offsec.tools
Ground control

A collection of scripts mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.

#debug   #ssrf   #vulnerabilities   #xss   #xxe  

B-XSSRF on offsec.tools
B-XSSRF

Toolkit to detect and keep track on Blind XSS, XXE & SSRF.

#ssrf   #vulnerabilities   #xss   #xxe  

SSRFire on offsec.tools
SSRFire

An automated SSRF finder. Just give the domain name and your server and chill!

#openredirect   #ssrf   #xss  

BeEF on offsec.tools
BeEF

The Browser Exploitation Framework is a penetration testing tool that focuses on the web browser.

#browser   #exploits   #framework   #vulnerabilities   #xss  

kxss on offsec.tools
kxss

Adaption of tomnomnom's kxss tool with a different output format.

#vulnerabilities   #xss  

FinDOM-XSS on offsec.tools
FinDOM-XSS

A fast DOM based XSS vulnerability scanner with simplicity.

#vulnerabilities   #xss  

Venom on offsec.tools
Venom

Popular Pentesting scanner for SQLi/XSS/LFI/RFI and other Vulns.

#lfi   #rfi   #scanner   #sqli   #vulnerabilities   #xss  

Knoxnl on offsec.tools
Knoxnl

This is a python wrapper around the amazing KNOXSS.

#fuzzing   #vulnerabilities   #xss  

XSStrike on offsec.tools
XSStrike

Most advanced XSS scanner.

#exploits   #vulnerabilities   #xss  

DalFox on offsec.tools
DalFox

Powerful open source XSS scanning tool and parameter analyzer, utility.

#exploits   #vulnerabilities   #xss  

KNOXSS on offsec.tools
KNOXSS

Online XSS tool with demonstration of vulnerability.

#browser   #online   #vulnerabilities   #xss