Dalfox

Мощный инструмент с открытым исходным кодом, ориентированный на автоматизацию, что делает его идеальным для быстрого сканирования на наличие XSS уязвимостей и анализа параметров. Его продвинутый механизм тестирования и нишевые функции призваны упростить процесс обнаружения и проверки уязвимостей.

Особенности

• Flexible Scanning Modes: Supports URL-based scans, file-based inputs, pipelines, and server modes for versatile testing approaches.
• Comprehensive Analysis: Detects reflected, stored, and DOM-based XSS vulnerabilities, along with parameter mining and static analysis to ensure thorough coverage.
• Extensibility: Offers custom payloads, remote wordlists, and API integrations for highly tailored testing to meet your specific requirements.
• Performance Optimization: Features such as payload abstraction, bad character filtering, and parallel encoding substantially improve efficiency and reduce scan times.
• Detailed Reporting: Outputs can be formatted as plain text or JSON, with options for in-depth reports to facilitate clear communication of findings.

Download | Site