Skip to content
/ rexsser Public

This is a burp plugin that extracts keywords from response using regexes and test for reflected XSS on the target scope.

74 stars 15 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

profmoriarity/rexsser

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
README.md
README.md
 
 
rexsser.py
rexsser.py
 
 

Repository files navigation

rexsser

This is a burp plugin (python) that extracts keywords from response using regexes and test for reflected XSS on the target scope. Valid parameters reflected, vulnerable parameters are show in results in the rexsser extension tab.

Regexes

  • extract all javascript 'var' names from response page
  • ...

Screenshots

img

Requirements

  • Jython
  • BurpSuite

Todo

  • Add Multiple regexes to extract words (Example: input elements in the page response)
  • Content-Type filter
  • Scope checkbox
  • Process only given status-codes
  • Turn off/on

About

This is a burp plugin that extracts keywords from response using regexes and test for reflected XSS on the target scope.

Resources

Readme
Activity

Stars

74 stars

Watchers

6 watching

Forks

15 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages