xsser

Cross Site "Scripter" is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications.

XSSer v1.8-3.tar.gz -> md5: 3058a17a1599b0ece5c722fd2e7ff455
XSSer v1.8-3.zip -> md5:840d94fe8d297ec3bbea70fb3bd57f0e

Features

Automated vectors (~1300)
Different injections: XST, XSS, XSA, XSR, DOM, DCP, Induced...
GTK+ Interfaz
Wizard helper
Exploiting methods
Geomapping
HTML5 vectors
Encoding bypassers: String.FromCharCode, Unicode, Decimal, Hexadecimal...
Special final injections: onMouseMove(), Iframes...
Different spoofing methods
Anti-antiXSS/IDS rules
Etc...

Project Samples

Project Activity

See All Activity >

License

GNU General Public License version 3.0 (GPLv3)

Follow xsser

xsser Web Site

Other Useful Business Software

Gen AI apps are built with MongoDB Atlas

Build gen AI apps with an all-in-one modern database: MongoDB Atlas

MongoDB Atlas provides built-in vector search and a flexible document model so developers can build, scale, and run gen AI apps without stitching together multiple databases. From LLM integration to semantic search, Atlas simplifies your AI architecture—and it’s free to get started.

Start Free

Rate This Project

User Reviews

Be the first to post a review of xsser!

Additional Project Details

Operating Systems

Linux

Languages

English

Intended Audience

Advanced End Users, End Users/Desktop, System Administrators

User Interface

Console/Terminal, Gnome

Programming Language

Python

Related Categories

Python Security Software

Registered

2010-03-15

Similar Business Software

PHP Secure

PHP Secure is a FREE code scanner that analyzes your PHP code for critical security vulnerabilities. Free online scanner: - Quickly and qualitatively finds web app vulnerabilities - Gives explicit reports and recommendations to fix vulnerabilities - Easy to use and requires no...

See Software
Criminal IP

Criminal IP is a comprehensive threat intelligence search engine that detects vulnerabilities of personal and corporate cyber assets in real time and facilitates preemptive responses accordingly. Originated from the idea that individuals and corporations would be able to strengthen their cyber...

See Software
ManageEngine Endpoint Central

ManageEngine Endpoint Central is built to secure the digital workplace while also giving IT teams complete control over their enterprise endpoints. It delivers a security-first approach by combining advanced endpoint protection with comprehensive management, allowing IT teams to manage the...

See Software
Aikido Security

Secure your code, cloud, and runtime in one central system. Aikido’s all-in-one security platform is loved by developers and security teams alike with full security visibility, insight in what matters most, and fast/automatic vulnerability fixes. Teams get security done with Aikido thanks...

See Software
ManageEngine ADManager Plus

ADManager Plus is a simple, easy-to-use Windows Active Directory (AD) management and reporting solution that helps AD administrators and help desk technicians in their day-to-day activities. With a centralized and intuitive web-based GUI, the software handles a variety of complex tasks like bulk...

See Software
UTunnel VPN and ZTNA

UTunnel provides Cloud VPN, ZTNA, and Mesh Networking solutions for secure remote access and seamless network connectivity. ACCESS GATEWAY: Our Cloud VPN as a Service offers swift deployment of Cloud or On-Premise VPN servers. It utilizes OpenVPN and IPSec protocols, enables policy-based...

See Software