Feature request: Automatic spider

Question

Feature request: Automatic spider

dicksnel opened this issue 6 months ago · 4 comments

Hi, thanks for this great tool!

It would be great if ezXSS can automatically spider an entire app after the XSS is triggered. This works adding a hidden iframe and scanning the target page for all hyperlinks with the same domain. Then for each found URL, fetch it via XHR in the iframe and extract all response data / screenshot it like a usual target page.

The advantage of this is that an attacker can gain immediate insight in all URL's and pages that are available in for example an admin panel.

If this is something to consider including, I have working code available from our own tooling.

Answer 1 · 2024-07-21T09:19:53.000Z

Hey Dick,

Thanks for the feature request. This for sure sounds like something we can add. I would love for you to share the working code and possibly some ideas how to implement this in ezXSS.

I can then look myself what would be the best way to implement this in the current system.

Answer 2 · 2024-07-25T07:34:03.000Z

@ssl great, I'll get back with some example code after my holidays!

Answer 3 · 2024-10-27T12:32:04.000Z

Hey @dicksnel! Hope you had a good holiday. Is this FR still something you would like to see in ezXSS? Let me know so I can implement it :)

Answer 4 · 2024-10-30T13:02:18.000Z

Hi @ssl, I still have it on my list but can't find the time yet. Feel free to close the issue and I'll open a new one later on or a PR when I have things ready!