LEFT SIDEBAR AD

Hidden in mobile, Best for skyscrapers.

XSS Automation using Waybackurl And gf (Grep-Finding)

3 years ago 387
BOOK THIS SPACE FOR AD
ARTICLE AD

Hey Folks!

We always go for automation in order to make the finding faster from other security researchers, when we talking about finding SQL injection bugs for a URL, enumerating subdomain, directory searching, and many more.

But what if we consider XSS for the same?

GF by TomnomnomWaybackURL by TomnomnomSome GF pattern GitHub repo R1, R2, R3anew by TomnomnomDALFOX by HAHWUL

Of Course, to run these tools you need to install “GO

Use the almighty vulnerable application http://testphp.vulnweb.com/Use WaybackURL to fetch the URLs for the above-mentioned target and save your output in a text file.

3. Use GF pattern to find the URLs that fetch the XSS parameters by

4. Now it’s time for DALFOX.

Read Entire Article
  3. XSS Automation using Waybackurl And gf (Grep-Finding)

Related

How I got my first Hall of Fame - Bug Bounty

How I got my first Hall of Fame - Bug Bounty

Command Injection: Mastering Exploitation Techniques with a Comprehensive Cheatsheet

Command Injection: Mastering Exploitation Techniques with a Comprehensive Cheatsheet

$3 Billion Crypto Exchange XT Allegedly Hacked

$3 Billion Crypto Exchange XT Allegedly Hacked

Hackers Steal $17 Million from Uganda’s Central Bank

Hackers Steal $17 Million from Uganda’s Central Bank

Small Bugs, Big Bounties: A Hacker’s Guide to Quick Wins

Small Bugs, Big Bounties: A Hacker’s Guide to Quick Wins

Critical Vulnerability Discovered in Zabbix Network Monitoring Tool

Critical Vulnerability Discovered in Zabbix Network Monitoring Tool

Trending

1. Sabarmati Report
2. Hunter Biden
3. Yeontan
4. Odisha Police Constable Admit Card
5. Skoda Kylaq
6. Shalini Passi
7. Suraksha Diagnostic IPO GMP
8. Filmfare OTT Awards winners
9. Chelsea
10. Vikrant Massey

Popular

1-click RCE in Electron Applications

1-click RCE in Electron Applications

Install waybackurls on Kali Linux

Install waybackurls on Kali Linux

Microsoft Office Professional Plus 2019 (x64 & x86) Multilingual + Pre-Activated

Microsoft Office Professional Plus 2019 (x64 & x86) Multilingual + Pre-Activated

Over 40 Apps With More Than 100 Million Installs Found Leaking AWS Keys

Over 40 Apps With More Than 100 Million Installs Found Leaking AWS Keys

Install DalFox on Kali Linux

Install DalFox on Kali Linux

Adobe Master Collection CC 2022 v25.08.2022 (x64) Multilingual Pre-Activated

Adobe Master Collection CC 2022 v25.08.2022 (x64) Multilingual Pre-Activated

Autodesk Revit 2023 R1 Build 23.0.11.19 (x64) Multilingual + Crack

Autodesk Revit 2023 R1 Build 23.0.11.19 (x64) Multilingual + Crack

Maxon CINEMA 4D Studio S22.123 (x64) Multilingual + Crack

Maxon CINEMA 4D Studio S22.123 (x64) Multilingual + Crack

‘We are not motivated by profits’ – Open Bug Bounty maintainers on finding a niche in the crowdsourced AppSec market

‘We are not motivated by profits’ – Open Bug Bounty maintainers on finding a niche in the crowdsourced AppSec market

Just Gopher It: Escalating a Blind SSRF to RCE for $15k

Just Gopher It: Escalating a Blind SSRF to RCE for $15k

BOOK THIS SPACE FOR AD
RIGHT SIDEBAR BOTTOM AD
Bengali (Bangladesh) Bengali (Bangladesh) · English (United States) English (United States) ·
About Us · Terms & Condition · Contact Us
© Security Alert 2024. All rights are reserved