menkrep1337/XSSCon: XSSCon: Simple XSS Scanner tool
2019-07-06 01:32:37 Author: github.com(查看原文) 阅读量:371 收藏

Join GitHub today

GitHub is home to over 36 million developers working together to host and review code, manage projects, and build software together.

Sign up

XSSCon: Simple XSS Scanner tool


A powerful XSS scanner made in python 3.7
See docs

Installing

Requirements:

  • BeautifulSoup4
  • requests
  • python 3.7

    • Commands: 
    git clone https://github.com/menkrep1337/XSSCon
chmod 755 -R XSSCon
cd XSSCon
python3 xsscon.py --help

    Usage

    Basic usage:

    python3 xsscon.py -u http://testphp.vulnweb.com

    Advanced usage:

    Main features

    • crawling all links on a website ( crawler engine )
    • POST and GET forms are supported
    • many settings that can be customized
    • Advanced error handling
    • Multiprocessing support.✔️
    • ETC....

    Screenshot

    Roadmap

    v0.3B:

  • Added custom options ( --proxy, --user-agent etc... )

    • v0.3B Patch:

  • Added support for ( form method GET )

    • v0.4B:

  • Improved Error handling
  • Now Multiple parameters for GET method is Supported

    • v0.5 Release (Final):

    • Bug fixed
    • Now cookies is supported. (--cookie {})

    Note

    • Sorry for my bad english
    • if you run xsscon on the win10 terminal you will get an untidy output
    • now it doesn't support DOM

    文章来源: https://github.com/menkrep1337/XSSCon
    如有侵权请联系:admin#unsafe.sh