Git All the Payloads! A collection of web attack payloads.
-
Updated
May 15, 2023 - Shell
#
xss
Here are 37 public repositories matching this topic...
Industry-leading free, high-performance, AI and semantic technology Web Application Firewall and API Security Gateway (WAAP) - UUSEC WAF.
letsencrypt security ddos api-gateway waf xss owasp sql-injection application-security modsecurity web-application-firewall data-mask hips rasp api-security waap web-security-gateway uuwaf uusec-waf uusec
-
Updated
Mar 29, 2026 - Shell
A fast DOM based XSS vulnerability scanner with simplicity.
-
Updated
Sep 30, 2022 - Shell
XSSRocket it is a tool designed for offensive security and XSS (Cross-Site Scripting) attacks.
hacking xss cybersecurity penetration-testing xss-vulnerability infosec pentesting bugbounty offensive xss-scanner xss-exploitation xss-detection xss-attacks
-
Updated
Oct 11, 2024 - Shell
XSS Finder Via SSTI
-
Updated
Sep 14, 2023 - Shell
CloudDefense.ai is an automated web application security testing tool that audits your web applications by checking for vulnerabilities like SQL Injection, Cross-site scripting and other exploitable vulnerabilities.
nodejs ruby kotlin java go swift php hacking xss penetration-testing vulnerability-scanner sast dast
-
Updated
Nov 10, 2025 - Shell
Tool for automate bug hunting process 🔍 --> 🍭
automation framework web exploit tool hacking xss cybersecurity bugbounty hacking-tool valhalla sub-ringan sub-ringan-framework subringan team-valhalla
-
Updated
Feb 25, 2026 - Shell
Multi-functional Web Recon & Vulnerability Scanner Tool
bash xss subdomain sqli xss-vulnerability recon xss-scanner vulnerability-scanners sqlinjection reconnaissance vulnerability-scanner subdomain-takeover subdomain-enumeration open-redirect-injection
-
Updated
May 2, 2022 - Shell
CoupDeWeb is an automated web vulnerability scanner designed for security researchers and developers. It scans for potential vulnerable endpoints, targeting various types of vulnerabilities such as XSS, SQL Injection, and more.
bash hacking xss cybersecurity penetration-testing anonymous sql-injection web-vulnerability-scanner ethical-hacking educational-tool waybackurls gf-patterns
-
Updated
Oct 17, 2024 - Shell
Find sources and sinks in js code that could lead to DOM XSS 🔎💧🚰
security scanner xss bug-bounty pentest dom-xss web-application-security pentest-tool web-application-security-scanner
-
Updated
Feb 27, 2024 - Shell
Pen Hunter is a comprehensive vulnerability scanning tool designed for penetration testers, security researchers and bug bounties. it automates the process of collecting subdomains and URLs and tests them for various vulnerabilities including XSS, SQL Injection, Local File Inclusion, Open Redirect, Server-Side Request Forgery, CSRF, and RCE.
open-source sql xss pentesting bugbounty pentest lfi pentest-tool pentesting-tools penetration-testing-tools bugbountytips bugbounty-tool
-
Updated
Dec 10, 2024 - Shell
💥 This tool is intended for bounty hunters, the script installs and launches the best set of tools for expanding the attack surface, for Web Sites, portals, and Organizations.
framework osint hacking xss subdomain enumeration penetration-testing bug-bounty fuzzing pentesting recon nuclei vulnerabilities bugbounty information-gathering reconnaissance pentest-tool amass openredirect
-
Updated
Apr 22, 2024 - Shell
Cross-Site Scripting (XSS) is one of the most well known web application vulnerabilities. It even has a dedicated chapter in the OWASP Top 10 project and it is a highly chased vulnerability in bug bounty programs. The xss finder gets a link from the user and scan the website for XSS vulnerability by injecting malicious scripts at the input place.
-
Updated
Jan 30, 2023 - Shell
An automation tool that scans sub-domains, sub-domain takeover and then filters out xss, ssti, ssrf and more injection point parameters.
open-source automation tool parameters domain injection xss scans ssrf ssti sub-domain assetfinder gau gf-patterns subjack
-
Updated
Dec 11, 2020 - Shell
A simple recon script, targeting potential XSS vulnerabilities
-
Updated
Mar 6, 2020 - Shell
Installation script for Ecsypno products.
javascript ruby rust crawler security-audit spider hacking xss audit web-application penetration-testing sql-injection hacking-tool web-application-security vulnerability-scanner
-
Updated
Jan 14, 2026 - Shell
Ethical hacking 🧑💻 is the legal way of breaking into systems 💻 to check and improve their security 🔐. White-hat hackers 🤍 work with permission ✅ to find and fix problems 🛠️ before bad hackers 🕵️♂️ exploit them. It helps in pen testing 🧪, risk checks
osint xss cybersecurity nmap penetration-testing bug-bounty sql-injection infosec web-security ctf kali-linux vulnerability-assessment ethical-hacking network-security metasploit exploit-development hacking-tools red-teaming recon-tools hacker-resources
-
Updated
Sep 22, 2025 - Shell
XSS Scanner Shell/Bash
shell tool xss pentest xss-scanner xss-detection xss-exploit xss-bruteforce waf-detection xss-bash xss-shell
-
Updated
Jan 28, 2024 - Shell
Improve this page
Add a description, image, and links to the xss topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the xss topic, visit your repo's landing page and select "manage topics."