Today I am open-sourcing a tool that has helped me find hundreds of XSS vulnerabilities, it has been over a year since I last worked on it but will push some new updates very soon as I have some nice new XSS research payloads to add.int0x33/420
Automated XSS Vulnerability Finder. Contribute to int0x33/420 development by creating an account on GitHub.github.com
python 420.py targets.txt
Example: Pornhub (https://hackerone.com/pornhub)
Do not include protocol in targets.txt for now, need to add that function back in to check and do that automatically and also strip if there. I will also add the crawler back in so it checks deeper that requested page.