xspear
XSpear is XSS Scanner on ruby gems.
Details
Category: Vulnerabilities
Publisher: trickest
Created Date: 9/7/2021
Container: quay.io/trickest/xspear:1.4.1
Source URL: https://github.com/hahwul/XSpear
Parameters
Command:
--param
- Test paramtersCommand:
--cookie
- Add CookieCommand:
--no-xss
- Don't test XSS, only parameters analysisCommand:
--headers
- Add HTTP HeadersCommand:
--raw-ssl
- http/https switch for burp raw fileCommand:
--threads
- Threads , default: 10Command:
--data
- POST Method Body dataCommand:
--url
- Target UrlCommand:
--config
- Use config fileCommand:
-b
- Add vector of Blind XSS. With XSS Hunter, ezXSS, HBXSS... e.g: https://hahwul.xss.htCommand:
--raw
- Load raw file(e.g raw_sample.txt)Command:
--output
- Output format (cli , json, html)Command:
--verbose
- Show log depth. 0: quite mode(only result) 1: show scanning status(default) 2: show scanning logs 3: show detail log(req/res)Command:
--test-all-params
- Test to all params(include not reflected)Command:
--custom-payload
- Load custom payload json file