GithubHelp home page GithubHelp logo

xnl-h4ck3r / xnlreveal Goto Github PK

View Code? Open in Web Editor NEW
280.0 280.0 50.0 9.29 MB

A Chrome/Firefox browser extension to show alerts for reflected query params, show Wayback archive links for the current path, show hidden elements and enable disabled elements.

License: MIT License

JavaScript 58.87% HTML 9.34% CSS 31.79%

xnlreveal's Introduction

If my tools help you find any great bounties, consider BUYING ME A COFFEE ☕ (I could use the caffeine!)...

Twitter  Mastodon

 

Buy Me a Coffee at ko-fi.com

xnlreveal's People

Contributors

xnl-h4ck3r avatar

Stargazers

avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar

Watchers

avatar avatar avatar avatar avatar avatar avatar avatar avatar

Forkers

yaelahrip dreamboat444 archyxsec grayarch sunandm m0lw9re santaonbeach svorma wuen1 tobey123 antare74 gastony slooppe hxlxmjxbbxs jesusgavancho sengkyaut illusionist3886 pingmuict lcsouzamenezes melihuzun superoldman96 ikhaleelkhan r4gn4r0k-sec noorahsmith ghcassell shakilll som3one0 0xsojalsec bigjohn828 abd-4fg hakupiku roys cybershadowvps danzajork m40l0ng travisco005 thor-rafi booboohq gprime31 arturbrasil mjasec muhammadasadpk bulky642 sajidqureshi786 milkmange sxyrxyy

xnlreveal's Issues

whitelist urls

@xnl-h4ck3r It would be more useful if it would have a feature to add urls into whitelist category so they can be skipped.

Feature request: Get name and id attributes from input fields and make a request with them as query parameters

Input fields are one of the most common places where reflected xss vulnerabilities happen. It would great if there was a way to find if a query parameter is being reflected in an input field even if that parameter didn't exist in the initial url. The way I imagine this would work is:

1-User browses to the website as normal.
2-XnlReveal parses the dom and finds all input fields and their id and name attributes.
3-XnlReveal sends a seperate request with those ids and input names as key for query parameters and a token as value.
4-XnlReveal reports back to the user if it finds any reflections.

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.