Automated blind-xss search for Burp Suite.
Open config.py to set path to files with Payloads, Parameters, Headers.
- Add your payloads to table using
Upload
orAdd
button. - DO NOT FORGET about
{URL}
parameter in your payloads. - When you add any data in tables,
Using
row will be manualy equal1
.(its active now) - If you want to make it unactive - set
Using
row to0
- You can add data manualy using
Add
button or inTarget
/Proxy
/Repeater
with right-click. - Do not forget, taht headers and parameters are
case insensitive
. - If you want to make it unactive - set
Using
row to0
Just upload blind-xss.py
file and use it.
Tweet us: