HTDark | Underground Hacking Forum and Cybersecurity Community
  • Earn real money by being active: Hello Guest, earn real money by simply being active on the forum — post quality content, get reactions, and help the community. Once you reach the minimum credit amount, you’ll be able to withdraw your balance directly. Learn how it works.

XSS Fuzzer: generates XSS payloads based on user-defined vectors and fuzzing lists

Status
Not open for further replies.
itsMe

itsMe

*KillmeMories*
Staff member
Administrator
Super Moderator
Hacker
Specter
Crawler
Shadow
Joined
Jan 8, 2019
Messages
56,605
Solutions
2
Reputation
32
Reaction score
100,451
Points
2,313
Credits
32,570
‎6 Years of Service‎
 
76%
screenshot-897.png


XSS Fuzzer is a simple application written in plain HTML/JavaScript/CSS which generates XSS payloads based on user-defined vectors using multiple placeholders which are replaced with fuzzing lists.

It offers the possibility to just generate the payloads as plain-text or to execute them inside an iframe. Inside iframes, it is possible to send GET or POST requests from the browser to arbitrary URLs using generated payloads.

XSS Fuzzer is a generic tool that can be useful for multiple purposes, including:

  •     Finding new XSS vectors, for any browser
  •     Testing XSS payloads on GET and POST parameters
  •     Bypassing XSS Auditors in the browser
  •     Bypassing web application firewalls
  •     Exploiting HTML whitelist features

To see this hidden content, you must like this content.
 
Status
Not open for further replies.
Back
Top