WhatWaf is an advanced firewall detection tool whose goal is to give you the idea of “There’s a WAF?”. WhatWaf works by detecting a firewall…
View More WhatWaf v1.5 releases: Detect & bypass web application firewalls and protection systems
Tag: XSS
testxss: PHP tool to test XSS
testxss PHP tool to test XSS. Note that this is an automated tool, a manual check is still required. Download git clone https://github.com/gwen001/testxss.git Use Usage: php…
View More testxss: PHP tool to test XSS
Pybelt v1.1 releases: The hackers tool belt
Pybelt is an open source hacker tool belt complete with: A port scanner SQL injection scanner Dork checker Hash cracker Hash type verification tool Proxy…
View More Pybelt v1.1 releases: The hackers tool belt
WSSAT v2.0: WEB SERVICE SECURITY ASSESSMENT TOOL
WSSAT is an open source web service security scanning tool which provides a dynamic environment to add, update or delete vulnerabilities by just editing its…
View More WSSAT v2.0: WEB SERVICE SECURITY ASSESSMENT TOOL
DSXS: Damn Small XSS Scanner
Damn Small XSS Scanner (DSXS) is a fully functional Cross-site scripting vulnerability scanner (supporting GET and POST parameters) written in under 100 lines of code.…
View More DSXS: Damn Small XSS Scanner
XssPy – Web Application XSS Scanner
XssPy is a python tool for finding Cross-Site Scripting vulnerabilities in websites. This tool is the first of its kind. Instead of just checking one…
View More XssPy – Web Application XSS Scanner
shuriken: Cross Site Scripting scanner
Shuriken was developed by Shogun Lab as an open source Cross-Site Scripting (XSS) command line utility to aid web security researchers who want to test…
View More shuriken: Cross Site Scripting scanner
xssmap: Intelligent XSS detection tool
XSS Tool Overview This tool is an intelligent XSS detection tool that uses human techniques to look for reflected cross-site scripting (XSS) vulnerabilities. Rather than…
View More xssmap: Intelligent XSS detection tool
[Collection] Some good Vulnerable Web application Lab for PenTester
WebGoat WebGoat is a deliberately insecure web application maintained by OWASP designed to teach web application security lessons. This program is a demonstration of common server-side application…
View More [Collection] Some good Vulnerable Web application Lab for PenTester
V3n0M-Scanner v425 releases: SQLi/XSS/LFI/RFI vulnerabilities scanning
V3n0M is a free and open source scanner. Evolved from Baltazar’s scanner, it has adopted several new features that improve functionality and usability. It is…
View More V3n0M-Scanner v425 releases: SQLi/XSS/LFI/RFI vulnerabilities scanning