Open In App

Xcapy – Tool For XSS Detection Suite for CTFs games

Last Updated : 10 Aug, 2022
Improve
Improve
Like Article
Like
Save
Share
Report

Xcapy is a free and open-source tool available on GitHub that was developed to find cross-site scripting (XSS Vulnerabilities) on web applications and websites. Cross-site scripting is a vulnerability found in the javascript code of web applications and websites. This tool is written in python language so you must have python 3.7 installed in your Kali Linux operating system in order to use this tool. There are lots of websites on the internet that are vulnerable to cross-site scripting(XSS). The security of the website is important for an organization and this Xcapy tool makes finding cross-site scripting easy. Cross-site scripting (XSS) is a vulnerability that can be used to hack websites. This tool helps to find such vulnerability easily which can save an organization from a big loss. 

Features of  Xcapy

  • Xcapy has a feature of error handling. If any error occurred during scanning it can handle easily.
  • Xcapy is a free and open-source tool.
  • Xcapy is written in python language.
  • Xcapy does not require any external modules of python to run.

 

Installation

Step 1: Use the following command to install the tool from GitHub. This is the first step to be initiated from the terminal of your kali Linux operating system.

cd Desktop

git clone “https://github.com/BlackWolfed/xcapy.git”

 

Step 2:  The tool has been downloaded. Now use the following command to move into the directory of the tool. 

cd xcapy

 

Step 3: Now you are in the directory of the tool. Use the following command to run the tool. 

python3 xcapy.py

 

The tool is running successfully.  Examples are given below to use the tool.

Examples

Example1: Use the Xcapy tool to find cross-site scripting(XSS) vulnerability on a website.

Use the following command to run the tool.

python3 xcapy.py

 

Now use type the domain of the website in the tool.

 

The tool has found that no XSS is present on the domain. Similarly, you can use the tool to find any XXS on other sites.

Example 2: Use the Xcapy tool to find cross-site scripting on a website. Use the following command to run the tool.

python3 xcapy.py

 

Enter your target domain in the terminal of the tool.

 


Like Article
Suggest improvement
Previous
Autopsy - Cyber Forensic Browser in Kali Linux
Next
BrokenSMTP – Python Script to look common vulnerabilities on SMTP server
Share your thoughts in the comments

Similar Reads

XSS-Freak - XSS Scanner Fully Written in Kali Linux
XSS-Loader - XSS Scanner and Payload Generator
FinDOM-XSS - Fast DOM Based XSS Vulnerability Scanner
PwnXSS - Automated XSS Vulnerability Scanner Tool in Kali Linux
XSSCon - Simple and Powerful XSS Scanner tool
DalFox - Parameter Analysis and XSS Scanning tool
XSpear - Powerful XSS Scanning And Parameter Analysis Tool
Damn Small XSS Scanner tool in Kali Linux
XanXSS - Simple XSS Finding Tool in Kali Linux
Bxss - Blind XSS Injector Tool

M
mohdshariq
Article Tags :
We use cookies to ensure you have the best browsing experience on our website. By using our site, you acknowledge that you have read and understood our Cookie Policy & Privacy Policy
Lightbox