Home
XSScope is a XSS payload generator platform with an aim of increaing the impact of an XSS during Bug Hunting. Using 8 modules that XSScope offers, advanced XSS can be simply use with 1 click.
- Automatic payload generator for Bug Hunting (Blind, Stored, Reflected & DOM XSS)
- Camera Hijacking
- Get every Entry form value that victim enters in the website
- Get victim's cookies (if any)
- Keylogger
Funny modules:
- Change every link in the website
- Change every image in the website
- Clickjacker (redirect to another URI once user click somewhere on the website)
Download the Github repo into your local machine:
https://github.com/kleiton0x00/XSScope.git
Download all the required libraries:
tk
pyngrok
zipfile
pyperclip
requests
Note: Zipfile is not required if you are using Linux/MacOS.
NOTE: Before running script, make sure to put your Ngrok Authtoken into /xsscope-master/ngrok_authtoken.txt
To run the software, simply enter the command:
python3 xsscope.py
For more detailed usage please refer the Wiki
Please refer to the Wiki
Ways to contribute
- Suggest a feature
- Report a bug
- Fix something and open a pull request
- Spread the word
Licensed under the GNU GPLv3, see LICENSE for more information.
The Favicon Webcam Image generated is taken & modified from wybircal.
For any problem, copyright disclaimers, etc. please feel free to email me: [email protected]