HTDark | Underground Hacking Forum and Cybersecurity Community
  • Earn real money by being active: Hello Guest, earn real money by simply being active on the forum — post quality content, get reactions, and help the community. Once you reach the minimum credit amount, you’ll be able to withdraw your balance directly. Learn how it works.

ezXSS v4.0 - an easy way for penetration testers and bug bounty hunters to test

Status
Not open for further replies.
itsMe

itsMe

*KillmeMories*
Staff member
Administrator
Super Moderator
Hacker
Specter
Crawler
Shadow
Joined
Jan 8, 2019
Messages
56,604
Solutions
2
Reputation
32
Reaction score
100,446
Points
2,313
Credits
32,560
‎6 Years of Service‎
 
76%
screenshot-10353.png


Features

    Easy to use dashboard with settings, statistics, payloads, view/share/search reports
    Unlimited users with permissions to personal payloads & their reports
    Instant alerts via mail, Telegram, Slack, Discord or custom callback URL
    Custom javascript payloads
    Custom payload links to distinguish insert points
    Extract additional pages, block, whitelist and other filters
    Secure your login with Two-factor (2FA)
    The following information can be collected on a vulnerable page:
        The URL of the page
        IP Address
        Any page referer (or share referer)
        The User-Agent
        All Non-HTTP-Only Cookies
        All Locale Storage
        All Session Storage
        Full HTML DOM source of the page
        Page origin
        Time of execution
        Payload URL
        Screenshot of the page
        Extract additional defined pages
    much much more, and, its just ez 🙂

Required

    Server or hosting with PHP 7.1 or up
    Domain name (consider a short one)
    SSL Certificate to test on https websites (consider Cloudflare or Let's Encrypt for a free SSL)

ezXSS v4.0 Latest

I am excited to announce the release of ezXSS v4.0, a major update to the XSS tool. This version includes at least the following new features and improvements:

    Completely re-coded, resulting in clean, readable code that is easy to understand and maintain
    Multi-user setup that allows for roles and payload separation
    Alerts via Slack and Discord in addition to existing support for email and Telegram
    Redesigned pages and fixed styling bugs
    More statistics on the dashboards
    Improved reports view and search
    Ability to render collected DOM pages
    Lots of smaller bug fixes
    and much much more amazing things!

It is highly recommended to update to ezXSS v4.0, as version 3.x will no longer be supported due to its old codebase. If you are currently running an older version of ezXSS, please make sure to first update to version >3.10 before upgrading to v4.0. Also, after updating, the default username will be "admin".

Thank you for your continued support and I hope you enjoy using the new and improved ezXSS v4.0!

To see this hidden content, you must like this content.
 
Status
Not open for further replies.
Back
Top