ezXSS is an easy way for penetration testers

Moderators: Paman, Xshadow, indounderground, NeOS-01

Forum rules
Membahas bugs,penetrasi, eksploitasi dan teknik mengamankan website - websrver. Sertakan POC disini agar member dapat mempelajarinya

Post Reply

1 post • Page 1 of 1

familycode: Posts: 712; Joined: Thu Oct 13, 2005 4:06 pm; Location: Yogyakarta; Contact:
Contact familycode

Website

ezXSS is an easy way for penetration testers

Quote

Post by familycode » Tue Jun 11, 2019 5:38 am

ezXSS

ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

- Easy to use dashboard with statics, payloads, view/share/search reports and more
- Payload generator
- Instant email alert on payload
- Custom javascript payload
- Enable/Disable screenshots
- Prevent double payloads from saving or alerting
- Block domains
- Share reports with a direct link or with other ezXSS users
- Easily manage and view reports in the dashboard
- Secure your login with extra protection (2FA)
- The following information is collected on a vulnerable page:
- The URL of the page
- IP Address
- Any page referer (or share referer)
- The User-Agent
- All Non-HTTP-Only Cookies
- All Locale Storage
- All Session Storage
- Full HTML DOM source of the page
- Page origin
- Time of execution
- Screenshot of the page

Download : https://github.com/ssl/ezXSS

http://xcode.or.id
http://xcode.or.id/professional
http://xcode.or.id/community
http://xcode.or.id/blog

Post Reply

1 post • Page 1 of 1

Return to “Web Hacking”