FinDOM-XSS is a tool that allows you to finding for possible and/ potential DOM based XSS vulnerability in a fast manner.
Installation
$ git clone https://github.com/dwisiswant0/findom-xss.git
Dependencies: LinkFinder
Configuration
Change the value of LINKFINDER
variable (on line 3) with your main LinkFinder file.
Usage
To run the tool on a target, just use the following command.
$ ./findom-xss.sh https://target.host/about-us.html
This will run the tool against target.host
.
URLs can also be piped to it and scan on them. For example:
$ cat urls.txt | ./findom-xss.sh
The second argument can be used to specify an output file.
$ ./findom-xss.sh https://target.host/about-us.html /path/to/output.txt
By default, output will be stored in the results/
directory in the repository with target.host.txt
name.
Also Read – EvilDLL – Malicious DLL (Reverse Shell) Generator For DLL Hijacking
License
It is licensed under the Apache. Take a look at the LICENSE for more information.
Thanks
Pystinger is a Python-based tool that enables SOCKS4 proxying and port mapping through webshells. It…
Introduction When it comes to cybersecurity, speed and privacy are critical. Public vulnerability databases like…
Introduction When it comes to cybersecurity, speed and privacy are critical. Public vulnerability databases like…
If you are working with Linux or writing bash scripts, one of the most common…
What is a bash case statement? A bash case statement is a way to control…
Why Do We Check Files in Bash? When writing a Bash script, you often work…