XSStrike Versions Save

Most advanced XSS scanner.

3.1.5

4 years ago
  • Massive improvements in several aspects

3.1.4

5 years ago
  • Negligible DOM XSS false positives
  • x10 Faster crawling by
    • Removing additional request for detecting DOM XSS
    • Skipping testing of a parameter multiple times

3.1.3

5 years ago
  • Removed browser engine emulation
  • Fixed a few bugs
  • Added a plugin to scan for outdated JS libraries
  • Improved crawling and DOM scanning

3.1.2

5 years ago
  • Fixed POST data handling
  • Support for JSON POST data
  • Support for URL rewriting
  • Cleaner crawling dashboard
  • No more weird characters while scanning DOM
  • Better DOM XSS scanning
  • Handle unicode while writing to file
  • Handle connection reset
  • Added ability to add headers from command line
  • Fixed issue which caused foundParams to not be tested

3.1.1

5 years ago
  • Fixed a build breaking typo

3.1.0

5 years ago
  • Various minor enhancements and bug fixes
  • Browser engine integration for zero false positives
  • Coverage of event handler context

3.0.5

5 years ago
  • Fixed a bug in HTML Parser
  • Ability to add URLs from file
  • More modular structure
  • Show parameter name while bruteforcing
  • Fix payload display while using POST method

3.0.4

5 years ago
  • Fixed a bug in bruteforcer
  • Fixed a major bug in HTML Parser
  • Added progress bar for bruteforcer
  • Code refactor
  • Updated signature for Fortiweb WAF

3.0.3

5 years ago
  • Minor bug fixes
  • Proxy Support
  • Blind XSS support
  • Detection of up to 66 WAFs

3.0.2

5 years ago
  • Ability to bruteforce payloads from a file
  • Verbose output toggle
  • Payload encoding: base64
  • Handle MemoryError in DOM scanner
  • Fixed a bug in bruteforcer