Releases: s0md3v/XSStrike
Releases · s0md3v/XSStrike
3.1.5
- Massive improvements in several aspects
3.1.4
- Negligible DOM XSS false positives
- x10 Faster crawling by
- Removing additional request for detecting DOM XSS
- Skipping testing of a parameter multiple times
3.1.3
- Removed browser engine emulation
- Fixed a few bugs
- Added a plugin to scan for outdated JS libraries
- Improved crawling and DOM scanning
3.1.2
- Fixed POST data handling
- Support for JSON POST data
- Support for URL rewriting
- Cleaner crawling dashboard
- No more weird characters while scanning DOM
- Better DOM XSS scanning
- Handle unicode while writing to file
- Handle connection reset
- Added ability to add headers from command line
- Fixed issue which caused
foundParams to not be tested
3.1.1
- Fixed a build breaking typo
3.1.0
- Various minor enhancements and bug fixes
- Browser engine integration for zero false positives
- Coverage of event handler context
3.0.5
- Fixed a bug in HTML Parser
- Ability to add URLs from file
- More modular structure
- Show parameter name while bruteforcing
- Fix payload display while using POST method
3.0.4
- Fixed a bug in bruteforcer
- Fixed a major bug in HTML Parser
- Added progress bar for bruteforcer
- Code refactor
- Updated signature for Fortiweb WAF
3.0.3
- Minor bug fixes
- Proxy Support
- Blind XSS support
- Detection of up to 66 WAFs
3.0.2
- Ability to bruteforce payloads from a file
- Verbose output toggle
- Payload encoding:
base64
- Handle
MemoryError in DOM scanner
- Fixed a bug in bruteforcer
