Skip to content

magento-ecg/xss-validator

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
README.md
README.md
 
 
basic-xss-spider.py
basic-xss-spider.py
 
 
crawler.log
crawler.log
 
 
vulnerable_URLs.txt
vulnerable_URLs.txt
 
 
xss.jpg
xss.jpg
 
 
xss_tester.py
xss_tester.py
 
 
xss_tester.pyc
xss_tester.pyc
 
 

Repository files navigation

basic-xss-spider

This project is fork from https://github.com/DanMcInerney/basic-xss-spider.git

Validate single url python basic-xss-spider.py -u https://www.website.com/uk-en/sale/shop-by/view-all-c7774.html python basic-xss-spider.py -u https://www.website.com/uk-en/catalogsearch/result/?q=goods

Validate entire website python basic-xss-spider.py -u https://www.website.com/uk-en/

Spiders concurrently opening URLs found then checks those URLs for variables. If URL variables are found, tests those variables with dangerous XSS characters "'><()=;/:

If it finds all or some important characters in the response HTML it will add the URL to the vulnerable_URLs.txt logfile. Uses requests and gevent for async capabilities.

Definitely not without bugs. Rewriting in Scrapy.

Screenshot

About

No description, website, or topics provided.

Resources

Readme
Activity
Custom properties

Stars

1 star

Watchers

5 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages