Automate XSS using Dalfox, WaybackURL, GF Patterns.

Make sure you have Go installed on your Machine

To Install Go on your Machine:

  1) sudo apt install -y golang
  2) export GOROOT=/usr/lib/go
  3) export GOPATH=$HOME/go
  4) export PATH=$GOPATH/bin:$GOROOT/bin:$PATH
  5) source .bashrc

How to Hunt XSS using Dalfox?

Use Waybackurls by Tomnomnom to Fetch URLS for Specific Target.
Use GF patterns to find Possible XSS Vulnerable Parameters.
Use Dalfox to find XSS.

Steps :

waybackurls testphp.vulnweb.com | gf xss | sed 's/=.*/=/' | sort -u | tee Possible_xss.txt && cat Possible_xss.txt | dalfox -b blindxss.xss.ht pipe > output.txt

Tools Download Links:-

1:- Dalfox
2:- Waybackurls
3:- GF
4:- GF Patterns

Find Script here : QuickXSS

If you have any Questions, Reach out to me via Twitter

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Automate XSS using Dalfox, WaybackURL, GF Patterns.

To Install Go on your Machine:

How to Hunt XSS using Dalfox?

Tools Download Links:-

Twitter : Fani Malik

FilesExpand file tree

Automated_XSS.md

Latest commit

History

Automated_XSS.md

File metadata and controls

Automate XSS using Dalfox, WaybackURL, GF Patterns.

To Install Go on your Machine:

How to Hunt XSS using Dalfox?

Tools Download Links:-

Twitter : Fani Malik