Faizan Ahmad
12
Dockerfile
Normal file
12
Dockerfile
Normal file
@@ -0,0 +1,12 @@
|
||||
FROM python:2.7.16-alpine3.10
|
||||
|
||||
ENV WORKDIR /src
|
||||
RUN mkdir -p ${WORKDIR}
|
||||
WORKDIR ${WORKDIR}
|
||||
|
||||
COPY ./requirements.txt ${WORKDIR}/requirements.txt
|
||||
RUN pip install -r requirements.txt
|
||||
|
||||
COPY ./ ${WORKDIR}/
|
||||
|
||||
ENTRYPOINT ["python", "XssPy.py"]
|
||||
13
README.md
13
README.md
@@ -23,6 +23,19 @@ You will also need the mechanize distribution, you can install it with pip:
|
||||
# Usage:
|
||||
`python XssPy.py website.com` (Do not write www.website.com OR http://www.website.com)
|
||||
|
||||
# Docker
|
||||
Advantage of Docker is that is will run on every machine. You don't need to install Pip packages or use a Venv.
|
||||
Package versions are pinned. This ensures that XssPy will also run in the future. Regardless which Python-Version you've running on you machine.
|
||||
## Docker build
|
||||
```
|
||||
docker build -ti xsspy .
|
||||
```
|
||||
## Docker usage
|
||||
After you build
|
||||
```
|
||||
docker run -ti xsspy website.com
|
||||
```
|
||||
|
||||
# Payloads
|
||||
If you have found a XSS vulnerability, you can try the following payloads.
|
||||
http://pastebin.com/J1hCfL9J
|
||||
|
||||
4
requirements.txt
Normal file
4
requirements.txt
Normal file
@@ -0,0 +1,4 @@
|
||||
html5lib==1.0.1
|
||||
mechanize==0.4.2
|
||||
six==1.12.0
|
||||
webencodings==0.5.1
|
||||
Reference in New Issue
Block a user