/femida

Automated blind-xss search for Burp Suite

Primary LanguagePythonMIT LicenseMIT

Femida-xss (WIP)

Automated blind-xss search for Burp Suite.

Settings

Open config.py to set path to files with Payloads, Parameters, Headers.

How to use

Set Up

Payloads

  • Add your payloads to table using Upload or Add button.
  • DO NOT FORGET about {URL} parameter in your payloads.
  • When you add any data in tables, Using row will be manualy equal 1.(its active now)
  • If you want to make it unactive - set Using row to 0

Headers & Parameters

  • You can add data manualy using Add button or in Target/Proxy/Repeater with right-click.
  • Do not forget, taht headers and parameters are case insensitive.
  • If you want to make it unactive - set Using row to 0
Release version soon.
Video soon.

Just upload blind-xss.py file and use it.

Tweet us:

HD_421 & wish i was