• Skip to main content
  • Skip to header right navigation
  • Skip to site footer
iGuRu

iGuRu

Real-time Technology News. Opinions & Tweaks

  • / news
  • / tools
  • / tweaks
  • / dummies
  • / opinions
  • / support
  • / yourpost
home / tools / dalfox: Parameter analysis and XSS scan tool

dalfox: Parameter analysis and XSS scan tool

03/08/2020 13:00 by Anastasis Vasileiadis

Dalfox is a tool for scanning and analyzing XSS parameters. The basic idea is to analyze parameters, find XSS and examine them based on Selenium.

Speaking of the name of the program, Dal (달) is the Korean accent of the moon and the fox which is Fox (Find Of XSS).

79773182 0d3c8c80 836c 11ea 957b af4fcb36f81c - dalfox: Parameter Analysis and XSS Scan Tool

Basic features

  • Parameter analysis
  • Static Analysis
  • Payloads optimization query
  • XSS Scan and DOM Database Verification.
  • All test payloads are tested in parallel with the encoder.
    • Support for duplicate URL encoder
    • Support for HTML Hex Encoder
  • Friendly Pipeline (single url, from file, from IO)
  • And the various options required for testing
    • built-in / customized grepping to find another vulnerability

Installation

go get -u github.com/hahwul/dalfox

Use

ex1 768x366 1 - dalfox: Parameter analysis and XSS scan tool

Run from a single URL

$ dalfox -url http://testphp.vulnweb.com/listproducts.php \?cat \=123\& artist \=123\& asdf \=ff

Execution from file

$ dalfox -iL urls_file

Information on the use and installation of the program, you will find here.

dalfox: Parameter analysis and XSS scan tool was last modified: August 3, 2020, 1: 01 mm by Anastasis Vasileiadis

spread the news

  • Facebook
  • Twitter
  • Reddit
  • Printing
  • Email

Read them Technology News from all over the world, with the validity of iGuRu.gr

Follow us on Google News


Competition: toolstag: dalfox

You May Also Like

jSQL Injection: Automatic SQL database injection with Java
ATMMalScan: Find malware on ATMs
Protect yourself online
Garud: Discover subdomains automatically

About Us Anastasis Vasileiadis

Translations are like women. When they are beautiful they are not faithful and when they are faithful they are not beautiful.

Previous Post: « Need Registry Cleaners like CCleaner?
Next Post: V3n0M-Scanner: Find SQLi / XSS / LFI / RFI security vulnerabilities »

Reader Interactions

Comment Policy:

IGuRu.gr does not publish the comments immediately. Malicious comments, comments that include ads, or comments that are offensive are deleted without notice. We do not adopt the opinions expressed by our readers.
Your comments will be displayed after approval by the administrators


Leave your comment
Ακύρωση απάντησης

Your email address is not published. Τα υποχρεωτικά πεδία σημειώνονται με *

 

 © 2021 · iGuRu.gr · ☢ · Keep It Simple Stupid Genesis theme

about  ·   get in touch  ·  rss  ·  sitemap  ·  cough

loading Cancel
Could not post post - check your email address!
Email verification failed, please try again
Your blog can not post posts via email.