CheckXSS - Detect XSS vulnerability in Web Applications
Detect XSS vulnerability in Web Applications
Screenshots
Easy Installation
As simple as below, Just one line of code:
curl -L -s https://raw.githubusercontent.com/Jewel591/CheckXSS/master/docs/install.sh|bash
Usage Instructions
python3.6 checkxss.py -h
Support POST and GET request methods, support parameter injection detection in cookie, referer, useragent fields For example, test the returnUrl parameter in POST data:
python3.6 checkxss.py -u "https://example.com/login.do" --data="returnUrl=utest" -p returnUrl
Features
- Support url encoding bypass
- Support unicode encoding of HTML tag attribute value to bypass
- Support HTML encoding to bypass the HTML tag attribute value
- Support for flexible replacement of () '"to bypass
- Case bypass
Contributing
Contributions, issues and feature requests are welcome!
Feel to check issues page
Maintainers
@Jewel591
CheckXSS - Detect XSS vulnerability in Web Applications
Reviewed by Zion3R
on
5:30 PM
Rating:
![CheckXSS - Detect XSS vulnerability in Web Applications](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgOYNTiXBQaCmCJL6GfbPiVuL90yYJw_WDmW0orkpnG8JN44fZQskuIMhlLmkgTaSljsWdoPvp1fucWy_DyXP76sD2sUPwo-jNdLXCRymy6OOcP3wfeGLuSWaQ2j5L9ZS8Zjhyphenhyphena0200NNmU/s72-c/CheckXSS_1.png)