Scribd
Upload
32 views2 pages

How To Find Cross Site Scripting Xss

Cross-site scripting (XSS) is a web vulnerability where attackers inject malicious JavaScript into applications. To find XSS, identify user inputs, test them with scripts, and use automated tools like Burp Suite and Google Dorks for discovery. Additional resources like web.archive.org can help uncover hidden endpoints that may be vulnerable to XSS attacks.

Uploaded by

gikame8539
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
32 views2 pages

How To Find Cross Site Scripting Xss

Cross-site scripting (XSS) is a web vulnerability where attackers inject malicious JavaScript into applications. To find XSS, identify user inputs, test them with scripts, and use automated tools like Burp Suite and Google Dorks for discovery. Additional resources like web.archive.org can help uncover hidden endpoints that may be vulnerable to XSS attacks.

Uploaded by

gikame8539
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 2

How To find cross site scripting xss

introduction to cross-site-scripting -XS it is a web-based ability in which an attacker


can inject malicious JavaScript code into the application which will be later executed

There are multiple types of this vulnerability

Stored/persistent XSS
Reflected/non-persistent XSS
DOM-Based/client-Side XSS
self-XSS

How to find a cross site scripting (xss) in a web application:


identify all the user inputs in the application, then play with them. send
malicious script inside the input,

<script> alert(1) </script>

See how the server rsponds, try to bypass the restrictions such as tag
removal, encoding or character

Also a good pratice besides the manual testngwill be automated payload


testing

Automated tools to find XSS:

Burp suit
PwnXSS
Xspear
XSSStrike

Google Dorks
Google dorking is one of the easy way to find websites containing XSS

If you search for:

site:* .google.com ext:php

Yo will get all google.com subdomains that have .php extension

If you see a vulnerable parameter in the url open it and start looking for
any XSS

Few more dorks


site:*.host.com ext:asp
site:*.host.com ext:jsp
site: .host.com ext:aspx
site:.host.com ext:jspX
site:*.host.com ext:do
site:+.host.com ext:action
site:*.host.com ext:php

web.archive.org is one of the best tools for finding XSS

Here you will get you more hidden endpoints that you may not find when
Google Dorking

Let's say I want to search hidden paths after

https://google. com/api/*

All you have to do is using this URL


I will just search this URL on web.archive.org
and it will give us all hidden paths

You might also like