From 023e2b7449ec36bd9c1af0d35483065d25f90669 Mon Sep 17 00:00:00 2001 From: Mehdi Date: Mon, 5 Aug 2024 15:36:04 +0330 Subject: [PATCH] Update XSS.md --- XSS.md | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/XSS.md b/XSS.md index 68178f9..7f5d3fd 100644 --- a/XSS.md +++ b/XSS.md @@ -853,6 +853,10 @@ alert("XSS"); python3 paramspider.py -d https://target.com -s TRUE -e ttf,woff,eot,svg,css | deduplicate | sed '1,4d' | httpx -silent | dalfox pipe -S | cut -d " " -f2 ``` +```bash +gospider -S domain.txt -t 3 -c 100 | tr " " "\n" | grep -v ".js" | grep "https://" | grep "=" | qsreplace '%22>' +``` + * [XSSTRON](https://github.com/RenwaX23/XSSTRON) - Powerful Chromium Browser to find XSS Vulnerabilites automatically while browsing web, it can detect many case scenarios with support for POST requests too * [XSS-Radar](https://github.com/bugbountyforum/XSS-Radar) - XSS Radar is a tool that detects parameters and fuzzes them for cross-site scripting vulnerabilities