dalfox
Cross-site Scripting scanner
Automates the process of identifying vulnerabilities in web applications by scanning for cross-site scripting (XSS) flaws and analyzing parameters.
🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.
4k stars
56 watching
428 forks
Language: Go
last commit: about 2 months ago
Linked from 1 awesome list
bugbountybugbounty-toolcicd-pipelinedevsecopsgolanghacktoberfestsecurityvulnerabilityxssxss-bruteforcexss-detectionxss-exploitxss-scanner
Related projects:
| Repository | Description | Stars |
|---|---|---|
| hahwul/xspear | Automated testing tool for identifying vulnerabilities in web applications via cross-site scripting (XSS) attacks | 1,215 |
 s0md3v/xsstrike | Automated tool to scan and detect Cross Site Scripting vulnerabilities in web applications | 13,452 |
 jiangsir404/xss-sql-fuzz | Automates fuzzing of XSS and SQL injection vulnerabilities in web applications using Burp Suite extensions. | 61 |
 leizongmin/js-xss | Sanitizes untrusted HTML to prevent cross-site scripting attacks by filtering input based on a whitelist of allowed tags and attributes. | 5,227 |
 asaiken/dom-based-xss-finder | Tools for identifying and exploiting vulnerabilities in DOM-based cross-site scripting attacks. | 71 |
 epsylon/xsser | Automated tool to detect and exploit Cross Site Scripting (XSS) vulnerabilities in web applications | 1,223 |
 r0075h3ll/oralyzer | A tool to identify vulnerabilities in web applications by probing for Open Redirections and other types of attacks. | 758 |
 attackercan/burp-xss-sql-plugin | Automated tool for detecting cross-site scripting (XSS) and SQL injection vulnerabilities in web applications. | 44 |
 v8blink/chromium-based-xss-taint-tracking | An XSS detection tool for web browsers with taint-tracking capabilities | 116 |
 laruence/taint | A PHP extension that detects and warns about potential cross-site scripting (XSS) vulnerabilities in user input | 610 |
 jewel591/xssmap | A tool to detect cross-site scripting vulnerabilities in web applications | 261 |
 ssl/ezxss | A tool for testing and exploiting Cross Site Scripting vulnerabilities in web applications | 1,938 |
 zaproxy/zaproxy | Automatically finds security vulnerabilities in web applications during development and testing. | 12,847 |
 vavkamil/xsswagger | A tool to scan web applications for Swagger UI vulnerabilities | 56 |
 damian89/extended-xss-search | A tool for scanning and identifying cross-site scripting (XSS) vulnerabilities in web applications | 183 |