HTDark | Underground Hacking Forum and Cybersecurity Community
  • Earn real money by being active: Hello Guest, earn real money by simply being active on the forum — post quality content, get reactions, and help the community. Once you reach the minimum credit amount, you’ll be able to withdraw your balance directly. Learn how it works.

Phyton DSXS -Damn Small XSS Scanner

Status
Not open for further replies.
S

sQuo

~ KillmeMories ~
Shadow
User
Joined
Oct 16, 2011
Messages
5,851
Reputation
0
Reaction score
22,904
Points
688
Credits
0
‎13 Years of Service‎
24%
1.png


Damn Small SQLi Scanner (DSSS) has been made as a PoC where I wanted to show that commercial (SQLi) scanners can be beaten under 100 lines of code.

It supports GET and POST parameters, blind/error SQLi tests and advanced comparison of different response attributes to distinguish blind responses. If you are satisfied with your commercial tool scanning results then I believe that you could even be more satisfied with this one.

As of optional settings it supports HTTP proxy together with HTTP header values "User-Agent", "Referer" and "Cookie".

p.s. Python v2.6 or v2.7 is required for running this program

Latest source code can be found here (update: current version is v0.2 - Nov 13th 2011).

How to use -

$ python dsxs.py

Damn Small XSS Scanner (DSXS)

by: Miroslav Stampar (http://unconciousmind.blogspot.com'>http://unconciousmind.blogspot.com'>http://unconciousmind.blogspot.com'>http://unconciousmind.blogspot.com | @stamparm)

Usage: dsxs.py [options]

Options:

--version show program's version number and exit

-h, --help show this help message and exit

-u URL, --url=URL Target URL (e.g. "http://www.target.com/page.htm?id=1")

--data=DATA POST data (e.g. "query=test")

--cookie=COOKIE HTTP Cookie header value

--user-agent=UA HTTP User-Agent header value

--random-agent Use randomly selected HTTP User-Agent header value

--referer=REFERER HTTP Referer header value

--proxy=PROXY HTTP proxy address (e.g. "http://127.0.0.1:8080")

$ python dsxs.py -u "http://zero.webappsecurity.com/login1.asp" --data="login=te

st&password=test&graphicOption=minimum" --random-agent

Damn Small XSS Scanner (DSXS)

by: Miroslav Stampar (http://unconciousmind.blogspot.com | @stamparm)

* scanning POST parameter 'login'

(i) POST parameter 'login' appears to be XSS vulnerable (">...

some filtering))

* scanning POST parameter 'password'

* scanning POST parameter 'graphicOption'

scan results: possible vulnerabilities found

$ python dsxs.py -u "http://xss.progphp.com/xss8.html?input=1" --random-agent

Damn Small XSS Scanner (DSXS)

by: Miroslav Stampar (http://unconciousmind.blogspot.com | @stamparm)

* scanning GET parameter 'input'

(i) GET parameter 'input' appears to be XSS vulnerable ("...", pure text respon

se, no filtering))

scan results: possible vulnerabilities found

$ python dsxs.py -u "http://xss.progphp.com/xss12.html" --data="bar=secret&foo=test"

Damn Small XSS Scanner (DSXS)

by: Miroslav Stampar (http://unconciousmind.blogspot.com | @stamparm)

* scanning POST parameter 'bar'

* scanning POST parameter 'foo'

(i) POST parameter 'foo' appears to be XSS vulnerable ("", inside tag,

inside single-quotes, some filtering))

scan results: possible vulnerabilities found

This link is hidden for visitors. Please Log in or register now.


 
Status
Not open for further replies.
Back
Top