# XSStrike

**Repository Path**: ulia/XSStrike

## Basic Information

- **Project Name**: XSStrike
- **Description**: XSS Scanner equipped with powerful fuzzing engine & intelligent payload generator
- **Primary Language**: Python
- **License**: MIT
- **Default Branch**: master
- **Homepage**: None
- **GVP Project**: No

## Statistics

- **Stars**: 0
- **Forks**: 0
- **Created**: 2020-06-09
- **Last Updated**: 2020-12-19

## Categories & Tags

**Categories**: Uncategorized

**Tags**: None

## README

# XSStrike [![python](https://img.shields.io/badge/Python-3-green.svg?style=style=flat-square)](https://www.python.org/downloads/)  [![license](https://img.shields.io/badge/License-MIT-orange.svg?style=style=flat-square)](https://github.com/UltimateHacke/XSStrike/blob/master/license.txt) [![version](https://img.shields.io/badge/Version-Beta-blue.svg?style=style=flat-square)](https://twitter.com/s0md3v)

![banner](https://image.ibb.co/dSSbF8/68747470733a2f2f692e696d6775722e636f6d2f4a3237756f52492e706e67.png)

XSStrike is an advanced XSS detection suite. It has a powerful fuzzing engine and provides zero false positive result using fuzzy matching. XSStrike is the first XSS scanner to generate its own payloads. It is intelligent enough to detect and break out of various contexts.

Made with ![heart](https://cloud.githubusercontent.com/assets/4301109/16754758/82e3a63c-4813-11e6-9430-6015d98aeaab.png) by [Somdev Sangwan](https://twitter.com/s0md3v)

## Features
- Powerful fuzzing engine
- Context breaking technology
- Intelligent payload generation
- GET & POST method support
- Cookie Support
- WAF Fingerprinting
- Hand crafted payloads for filter and WAF evasion
- Hidden parameter discovery
- Accurate results via [levenshtein distance](https://en.wikipedia.org/wiki/Levenshtein_distance) algorithm

To know more visit [xsstrike.tk](http://xsstrike.tk)

**Note:** XSStrike isn't compatible with Python2 anymore, please use `python3 xsstrike` to run it.\
[Changelog](https://github.com/s0md3v/XSStrike/blob/master/CHANGELOG.md) contains the changes made to XSStrike after the XSStrike v2.0 pre-beta release.

### Screenshots

![ss1](https://image.ibb.co/hFAVa8/68747470733a2f2f7873737472696b652e746b2f696d616765732f312e706e67.png)

![ss2](https://image.ibb.co/jA9dTT/68747470733a2f2f7873737472696b652e746b2f696d616765732f322e706e67.png)

![ss3](https://image.ibb.co/cwjqa8/68747470733a2f2f7873737472696b652e746b2f696d616765732f342e706e67.png)

![ss4](https://image.ibb.co/gmf7No/68747470733a2f2f7873737472696b652e746b2f696d616765732f352e706e67.png)

#### License
XSStrike is licensed under [MIT license](https://github.com/s0md3v/XSStrike/blob/master/LICENSE).