Skip to content

This is a burp plugin that extracts keywords from response using regexes and test for reflected XSS on the target scope.

Notifications You must be signed in to change notification settings

profmoriarity/rexsser

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
 
 
 
 

Repository files navigation

rexsser

This is a burp plugin (python) that extracts keywords from response using regexes and test for reflected XSS on the target scope. Valid parameters reflected, vulnerable parameters are show in results in the rexsser extension tab.

Regexes

  • extract all javascript 'var' names from response page
  • ...

Screenshots

img

Requirements

  • Jython
  • BurpSuite

Todo

  • Add Multiple regexes to extract words (Example: input elements in the page response)
  • Content-Type filter
  • Scope checkbox
  • Process only given status-codes
  • Turn off/on

About

This is a burp plugin that extracts keywords from response using regexes and test for reflected XSS on the target scope.

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages