Skip to content
gathers the XSS cheatsheet payloads and creates a usable wordlist
Go
Branch: master
Clone or download
crawl3r
crawl3r Update main.go
Comments added to head of file, check before calling filter(). VS did some shuffling for whatever reason #microsoft
Latest commit e1fa8cb Oct 10, 2019
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
.gitattributes Initial commit Oct 1, 2019
README.md Update README.md Oct 10, 2019
main.go
payloads.txt Initial commit Oct 1, 2019

README.md

PortswiggerXSS

Gathers the cheatsheet payloads and creates a usable wordlist

THANK YOU PORTSWIGGER FOR ALL YOUR AMAZING WORK AND EFFORT ❤️

Just build or run the script as is, no args needed. The rest should be handled for you.

Disclaimer: Not the cleanest code but it works :)
Cheatsheet: https://portswigger.net/web-security/cross-site-scripting/cheat-sheet

Thank you ArenasDev for adding the following parameters and functionality: -tag for tag filtering
-event for event filtering
-filename for setting the name of the filtered list
-update to force update (it wont update if there is an existing payload file)

You can’t perform that action at this time.