Awesome Open Source
Awesome Open Source

Server Side Template Injection(SSTI) - XSS Finder

This tool will grap all target subdomains from shodan that are using AsgularJS Technology and in output it will provide us with XSS payload related to AngularJS version of that subdomain.

Prerequisites

1. npm i -g wappalyzer
2. pip install -U setuptools
3. easy_install shodan
4. easy_install -U shodan
5. shodan init YOUR_API_KEY
git clone https://github.com/darklotuskdb/ssti-xss-finder.git && cd ssti-xss-finder && chmod +x *.sh

Usage

Linux

./SSTI-XSS-Finder.sh <Shodan-Dork>  like  org:target | hostname:target.com | net:127.0.0.1

Screenshot

sstixss

Reference

Donation

BuyMeACoffee If you like my work

About Me

Social Media Handles

Related Awesome Lists
Top Programming Languages
Top Projects

Get A Weekly Email With Trending Projects For These Topics
No Spam. Unsubscribe easily at any time.
Shell (171,036
Vulnerabilities (15,535
Bug (13,411
Xss (1,733
Bugbounty Tool (107
Bugbountytips (55
Dork (55
Ssti (8