Skip to main content

XSS Hunting

Discover Cross-Site Scripting (XSS) vulnerabilities in web applications.

Access XSS Hunting via the Navigation Menu

note

Users can access the XSS Hunting feature through the Scan menu by selecting the XSS Hunting tab.

Select XSS Hunting Navbar Capture

To use XSS Hunting, users can follow the sfollowing steps.

  1. Click the "Generate" button
  2. Open the “Payloads” dropdown
  3. Copy one of the payloads Payloads Capture
  4. Paste the copied payload in the vulnerable parameters of the target application Guestbook Capture
  5. Wait until a victim opens the page where the payload has been inserted
  6. If a victim opens the page, there will be some information saved to Helium Security Victim Capture
  7. Click Detail to view the XSS Hunting Summary Detail XSS Hunting Capture