XSSassin - Payload Injector por yesmayank
Security testing: inject payloads into input fields. XSS, SQLi, HTML injection and more.
Disponível no Firefox para Android™Disponível no Firefox para Android™
Metadados da extensão
Capturas de ecrã
Acerca desta extensão
Security testing: inject payloads into input fields. XSS, SQLi, HTML injection and more.
XSSassin: The Ultimate Payload Injector for Pentesters & Bug Bounty Hunters
XSSassin is an advanced security testing extension designed specifically for ethical hackers, penetration testers, and security-conscious developers. Seamlessly inject common attack payloads directly into web page input fields to test for vulnerabilities like XSS, SQLi, and more—all with a single click!
🚀 CORE FEATURES:
One-Click Injection: Hover over any text field, textarea, or contenteditable area to instantly reveal quick-inject buttons.
Massive Payload Library: Built-in payloads for Cross-Site Scripting (XSS), SQL Injection (SQLi), HTML Injection, NoSQL, LDAP, OS Command Injection, XPath, SSTI, CRLF, and XXE.
Custom Payloads: Tailor your pentesting arsenal by adding your own custom payloads in the extension options.
Auto-Fill All: Hunting for bugs? Fill every input on a target page with your default or a random payload simultaneously.
Per-Site Toggling: Easily enable or disable the extension on specific domains to keep your regular browsing clean.
🛠 WHO IS THIS FOR?
Bug Bounty Hunters looking to speed up manual testing.
Penetration Testers conducting web application security assessments.
QA Engineers and Developers ensuring their forms are sanitized and secure.
⚠️ IMPORTANT / DISCLAIMER:
XSSassin is built strictly for educational purposes and authorized ethical hacking. Only use this tool on applications you own or have explicit permission to test. The developers assume no liability for misuse.
XSSassin: The Ultimate Payload Injector for Pentesters & Bug Bounty Hunters
XSSassin is an advanced security testing extension designed specifically for ethical hackers, penetration testers, and security-conscious developers. Seamlessly inject common attack payloads directly into web page input fields to test for vulnerabilities like XSS, SQLi, and more—all with a single click!
🚀 CORE FEATURES:
One-Click Injection: Hover over any text field, textarea, or contenteditable area to instantly reveal quick-inject buttons.
Massive Payload Library: Built-in payloads for Cross-Site Scripting (XSS), SQL Injection (SQLi), HTML Injection, NoSQL, LDAP, OS Command Injection, XPath, SSTI, CRLF, and XXE.
Custom Payloads: Tailor your pentesting arsenal by adding your own custom payloads in the extension options.
Auto-Fill All: Hunting for bugs? Fill every input on a target page with your default or a random payload simultaneously.
Per-Site Toggling: Easily enable or disable the extension on specific domains to keep your regular browsing clean.
🛠 WHO IS THIS FOR?
Bug Bounty Hunters looking to speed up manual testing.
Penetration Testers conducting web application security assessments.
QA Engineers and Developers ensuring their forms are sanitized and secure.
⚠️ IMPORTANT / DISCLAIMER:
XSSassin is built strictly for educational purposes and authorized ethical hacking. Only use this tool on applications you own or have explicit permission to test. The developers assume no liability for misuse.
Rated 0 by 0 reviewers
Permissions and data
Permissões necessárias:
- Aceder aos separadores do navegador
- Aceder aos seus dados para todos os sites
Permissões opcionais:
- Aceder aos seus dados para todos os sites
Data collection:
- The developer says this extension doesn't require data collection.
Mais informação
- Ligações do complemento
- Versão
- 1.3.2
- Tamanho
- 450,13 KB
- Última atualização
- há 11 dias (22 de abr de 2026)
- Categorias relacionadas
- Licença
- Apache License 2.0
- Histórico de versões
- Adicionar à coleção