#xss
JS-Tap
JavaScript payload and supporting software to be used as XSS payload or post exploitation implant.
s3cXSSer
This extension will help you to detect GET/POST based XSS vulnerability in any website easily.
XSS Hunter
The fastest way to set up XSS Hunter to test and find blind cross-site scripting vulnerabilities.
RedTeam_toolkit
Open source Django offensive webapp which is keeping the best tools used in the redteaming.
Cross-site scripting cheat sheet
PortSwigger XSS cheat sheet that contains many vectors that can help you bypass WAFs and filters.
PortSwigger Cross-Site Scripting cheatsheet data
All the XSS cheatsheet data to allow contributions from the community.
XSSwagger
A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks.
Shadow Workers
C2 and proxy designed to help in the exploitation of XSS and malicious Service Workers.
Xss-Sql-Fuzz
Burp Suite plugin for XSS and SQLi which add our payload to all parameters with one click.
XSSer
Automatic framework to detect, exploit and report XSS vulnerabilities in web-based applications.
xssValidator
A Burp Intruder extender designed for automation and validation of XSS vulnerabilities.
Ground control
A collection of scripts mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.
BeEF
The Browser Exploitation Framework is a penetration testing tool that focuses on the web browser.