Skip to content
/ queryxss Public

Tool for testing reflections in the HTTP responses

59 stars 8 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

vitorfhc/queryxss

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

30 Commits
cmd
cmd
 
 
docs/img
docs/img
 
 
pkg
pkg
 
 
.gitignore
.gitignore
 
 
.goreleaser.yaml
.goreleaser.yaml
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
main.go
main.go
 
 

Repository files navigation

QueryXSS

QueryXSS is a tool to test for reflected inputs in the response.

Beware: This tool is still in development, so you can expect bugs.

Usage

$ queryxss -h                                    
QueryXSS finds reflected values in the HTTP response.

Usage:
  queryxss [flags]

Flags:
  -k, --allow-insecure       Allow insecure connections
  -d, --debug                Enable debug mode
  -f, --file string          File with URLs to scan
  -H, --header stringArray   Headers to send with the request (specify multiple times)
  -h, --help                 help for queryxss
  -m, --min-length uint      Minimum value's length to scan for reflections (default 3)
  -n, --no-color             Disable color output
  -r, --rate-limit uint      Number of requests per second (default 25)
  -s, --silent               Outputs only errors and the results

Install

Using go install

Make sure you have Go installed and configured.

go install github.com/vitorfhc/queryxss@latest

Manual install

git clone github.com/vitorfhc/queryxss
cd queryxss
go install
<script>alert(document.cookie)</script>

About

Tool for testing reflections in the HTTP responses

Resources

Readme
Activity

Stars

59 stars

Watchers

2 watching

Forks

8 forks
Report repository

Releases 4

v0.4.0 Latest
Mar 13, 2023
+ 3 releases

Packages

No packages published

Languages