An XSS scanner and web app pentesting tool.
usage: heXSS [-h] [-u DOMAIN] [-i HOSTNAME] [-w WORDLIST] [-n NMAP] [-p PORT] [-o OUTPUT]
[-db DATABASE] [--subdomain SUBDOMAIN] [-rf REFLECT] [--fuzz FUZZER]
XSS and Vulnerability Scanner
options:
-h, --help show this help message and exit
-u DOMAIN, --domain DOMAIN
-i HOSTNAME, --hostname HOSTNAME
-w WORDLIST, --wordlist WORDLIST
-n NMAP, --nmap NMAP Scans target IP or domain using nmap
-p PORT, --port PORT Specify a port
-o OUTPUT, --output OUTPUT
-db DATABASE, --database DATABASE
--subdomain SUBDOMAIN
-rf REFLECT, --reflect REFLECT
--fuzz FUZZER Turns parameter fuzzer on, replace parameter with FUZZ
View full history Series and milestones
trunk series is the current focus of development.