Exploitation Tools Pentesting Tools PHP and Website Security Python Security Assessment Tool Vulnerability Scanner Web Application

XSStrike v2.0 – An Advanced XSS Detection And Exploitation Suit

XSStrike is an advanced XSS detection suite. It has a powerful fuzzing engine and provides zero false positive result using fuzzy matching. XSStrike is the first XSS scanner to generate its own payloads. It is intelligent enough to detect and break out of various contexts.


  • Powerful fuzzing engine
  • Context breaking technology
  • Intelligent payload generation
  • GET & POST method support
  • Cookie Support
  • WAF Fingerprinting
  • Hand crafted payloads for filter and WAF evasion
  • Hidden parameter discovery
  • Accurate results via levenshtein distance algorithm


XSStrike is compatible with all *nix based operating systems running Python 2.7.It will run on windows as well but you will see some weird codes instead of color.

1. Open a terminal and git clone.

2. Now naviagte to XSStrike directory

3. Now install the requirements with the following command

4. run or execute the command XSStrike

To know more visit xsstrike.tk

Downlaod at Github

Post Comment



This site uses Akismet to reduce spam. Learn how your comment data is processed.