Skip to content
gathers the XSS cheatsheet payloads and creates a usable wordlist
Go
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
.gitattributes
README.md
main.go
payloads.txt

README.md

PortswiggerXSS

Gathers the cheatsheet payloads and creates a usable wordlist

THANK YOU PORTSWIGGER FOR ALL YOUR AMAZING WORK AND EFFORT ❤️

Just build or run the script as is, no args needed. The rest should be handled for you.

Disclaimer: Not the cleanest code but it works :)
Cheatsheet: https://portswigger.net/web-security/cross-site-scripting/cheat-sheet

Thank you ArenasDev for adding the following parameters and functionality: -tag for tag filtering
-event for event filtering
-filename for setting the name of the filtered list
-update to force update (it wont update if there is an existing payload file)

You can’t perform that action at this time.