mirror of
https://github.com/Ed1s0nZ/CyberStrikeAI.git
synced 2026-03-31 00:09:29 +02:00
46 lines
1.0 KiB
YAML
46 lines
1.0 KiB
YAML
name: "xsser"
|
|
command: "xsser"
|
|
enabled: true
|
|
short_description: "XSS漏洞测试工具"
|
|
description: |
|
|
XSSer是一个自动化XSS漏洞测试工具。
|
|
|
|
**主要功能:**
|
|
- XSS漏洞检测
|
|
- 多种XSS技术
|
|
- 自动化测试
|
|
- 报告生成
|
|
|
|
**使用场景:**
|
|
- XSS漏洞测试
|
|
- Web应用安全测试
|
|
- 渗透测试
|
|
- 漏洞验证
|
|
parameters:
|
|
- name: "url"
|
|
type: "string"
|
|
description: "目标URL"
|
|
required: true
|
|
flag: "--url"
|
|
format: "flag"
|
|
- name: "params"
|
|
type: "string"
|
|
description: "要测试的参数"
|
|
required: false
|
|
flag: "--Fp"
|
|
format: "flag"
|
|
- name: "additional_args"
|
|
type: "string"
|
|
description: |
|
|
额外的xsser参数。用于传递未在参数列表中定义的xsser选项。
|
|
|
|
**示例值:**
|
|
- 根据工具特性添加常用参数示例
|
|
|
|
**注意事项:**
|
|
- 多个参数用空格分隔
|
|
- 确保参数格式正确,避免命令注入
|
|
- 此参数会直接追加到命令末尾
|
|
required: false
|
|
format: "positional"
|