项目作者: andripwn
项目描述 :
PwnXSS: Vulnerability (XSS) scanner exploit
高级语言: Python
项目地址: git://github.com/andripwn/PwnXSS.git
A powerful XSS scanner made in python 3.7
Installing
Requirements:
BeautifulSoup4
pip install bs4
requests
pip install requests
python 3.7 Commands:
bash
git clone https://github.com/pwn0sec/PwnXSS
chmod 755 -R PwnXSS
cd PwnXSS
python3 pwnxss.py --help## Usage
Basic usage:
bash
python3 pwnxss.py -u http://testphp.vulnweb.comAdvanced usage:
bash
python3 pwnxss.py --help## Main features
crawling all links on a website ( crawler engine )
POST and GET forms are supported
many settings that can be customized
Advanced error handling
Multiprocessing support.✔️
ETC….
## Screenshot
## Roadmap
v0.3B:
———
Added custom options ( —proxy, —user-agent etc… )v0.3B Patch:
———
Added support for ( form method GET )
v0.4B:
Improved Error handlingNow Multiple parameters for GET method is Supported
v0.5 Release (Final):
- Bug fixed
- Now cookies is supported. (—cookie {})
Note
- Sorry for my bad english
- if you run pwnxss on the win10 terminal you will get an untidy output
- now it doesn’t support DOM
