🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.

Hackingtool Menu 🧰 AnonSurf Information Gathering Password Attack Wireless Attack SQL Injection Tools Phishing Attack Web Attack Tool Post exploitation Forensic Tools Payload Creator Router Exploit Wifi Jamming XSS Attack Tool Reverse Engineering SocialMedia Finder DDos Attack Tools Steganography Tools IDN Homograph Attack Hash Cracking Tools SocialMedia Attack Android Hack RAT Tools Web Crawling Payload Injector Update System AnonSurf Anonmously Surf Multitor Information Gathering Nmap Dracnmap Port Scanning Host To IP Xerosploit Infoga - Email OSINT ReconSpider RED HAWK (All In One Scanning) ReconDog Striker SecretFinder Port Scanner Breacher Password Attack Cupp WordlistCreator Goblin WordGenerator Credential reuse attacks Wordlist (Contain 1.4 Billion Pass) Wireless Attack WiFi-Pumpkin pixiewps Bluetooth Honeypot GUI Framework Fluxion Wifiphisher Wifite EvilTwin SQL Injection Tools sqlmap tool NoSqlMap Damn Small SQLi Scanner Explo Blisqy - Exploit Time-based blind-SQL injection Leviathan - Wide Range Mass Audit Toolkit SQLScan SocialMedia Attack Instagram Attack AllinOne SocialMedia Attack Facebook Attack Application Checker Android Attack Keydroid MySMS Lockphish (Grab target LOCK PIN) DroidCam (Capture Image) EvilApp (Hijack Session) Phishing Attack Setoolkit SocialFish HiddenEye Evilginx2 Shellphish BlackEye I-See-You(Get Location using phishing attack) SayCheese (Grab target's Webcam Shots) QR Code Jacking Web Attack SlowLoris Skipfish SubDomain Finder CheckURL Blazy Sub-Domain TakeOver Post Explotation Vegile - Ghost In The Shell Chrome Keylogger Forensic Tool Bulk_extractor Disk Clone and ISO Image Aquire AutoSpy Toolsley Wireshark Payload Generator The FatRat* Brutal Stitch MSFvenom Payload Creator Venom Shellcode Generator Spycam Mob-Droid Exploit Framework RouterSploit WebSploit Commix Web2Attack Fastssh SocialMedia Finder Find SocialMedia By Facial Recognation System Find SocialMedia By UserName Sherlock SocialScan Steganography SteganoHide StegnoCracker Whitespace Ddos Attack tool SlowLoris SYN Flood DDoS Weapon UFOnet GoldenEye XSS Attack tool DalFox(Finder of XSS) XSS Payload Generator Advanced XSS Detection Suite Extended XSS Searcher and Finder XSS-Freak XSpear XSSCon XanXSS IDN Homograph EvilURL Email Verifier KnockMail Hash Cracking Tool Hash Buster

XSS scanning with Dalfox on Github-action

My personal pretesting recon/low hanging fruit script. Uses Gxss, Dalfox, and a few other scripts to scan all of a domain(and/or subdomains as well) for user inputs, checks if reflected, tests for sqli, xss, open red. and a few more. This is really just for my personal use.

A Burp Suite extension that integrates Dalfox XSS scanner directly into your workflow.

TangGo的自定义界面工具模块设计和分享的第三方工具界面

This framework focuses on automating XSS (Cross-Site Scripting) detection in web applications. It identifies subdomains, filters live hosts, collects and deduplicates endpoints, tests for reflection points with Gxss, and scans for vulnerabilities using dalfox. Designed for bug hunters, it streamlines the XSS discovery process efficiently.

Personal - Experimentation

No description available

for dalfox

Automação completa para caça de vulnerabilidades XSS (Cross-Site Scripting) usando ferramentas poderosas do mundo Bug Bounty. Esse script faz a coleta de URLs, filtra os parâmetros e dispara testes automáticos com payloads customizados via dalfox.

No description available

Automated Reflected XSS Scanner for Bug Bounty Hunters | Built with Subfinder, ParamSpider & Dalfox

Automated Reflected XSS Scanner for Bug Bounty Hunters Built with Subfinder, ParamSpider & Dalfox

tools dalfox x paramspider

Pentest XSS - Projet d’ingénierie en cybersécurité : détection, analyse et exploitation d’une faille XSS avec Dalfox et BeEF.

One-command installer for 100+ bug bounty & reconnaissance tools (Subfinder, Nuclei, Katana, FFUF, Dalfox, SQLmap, etc.)

Personal recon and vuln scanning pipeline — chains subfinder, httpx, nmap, nuclei, dalfox, sqlmap and more into one command. Outputs a clean report per target.

YokaiHunter adalah tool kombinasi `Gospider`, `Katana`, dan `Dalfox` untuk melakukan crawling URL + parameter discovery + XSS auto scan. Dibuat dengan 💖 oleh bug hunter 👨‍💻 Gen-Z.

XSS Scanner is a web application built with Spring Boot, which I developed. It allows you to scan URLs for potential Cross-Site Scripting (XSS) vulnerabilities using the Dalfox tool

No description available

No description available

dalfox-burp-standalone is a small helper tool that lets you use Dalfox (XSS scanner) seamlessly with Burp Suite, without needing a heavy plugin setup. It’s designed to be simple, portable, and easy to plug into your existing web app testing workflow.

DalBurp is a Burp Suite Extension that automates XSS vulnerability scanning by integrating directly with Dalfox CLI

XSStrike, Spiderfoot, Dalfox, well, what do you know? Please use responsibly and credit goes to orignal creators.

⚡ AutoXSS Prime: The ultimate automated XSS vulnerability scanner. Features a dual-engine core (Nuclei DAST + Dalfox), smart URL prioritization, and uncensored payload reporting. Production-ready, environment-agnostic, and designed for bug bounty hunters.

Bitex Recon is an all-in-one reconnaissance toolkit for security professionals. It integrates powerful tools for subdomain enumeration (Subfinder), parameter discovery (Paramspider), web tech fingerprinting (WhatWeb), vulnerability scanning (Nuclei, Dalfox), and more

GhostTool, web güvenliği ve bug bounty süreçlerinde kullanılan popüler araçların otomatik kurulumunu sağlayan bash tabanlı bir yardımcı script’tir. Dalfox, Arjun, Nuclei, GF, GAU, Waybackurls, Xsser ve XSStrike gibi araçları tek menü üzerinden hızlı şekilde kurar.

An autonomous, AI-powered penetration testing framework. Leverages LangChain and 27+ integrated security tools (Nuclei, SQLMap, Dalfox) to automate Reconnaissance, Scanning, Exploitation, and Report generation in a secure sandbox. Supports Gemini, OpenAI, Claude, and local Ollama models.

offasapalvin {axnox} Automated XSS Finder