- DOM based XSS passive scanner add-on for Fiddler4.

  • How to use
    1. This is a "DOM based XSS passive scanner" add-on for Fiddler4.

      You need to install Fiddler4 (NOT Fiddler2) to be able to use this add-on.

      Copy DLL to %USERPROFILE%\Documents\Fiddler2\Scripts\.

    2. Check "Enable" checkbox to use this add-on.
    3. Crawl target web sites.
    4. If DOM based XSS's "source"&"sink" is detected, it will be displayed in listbox.
  • Download  

    Back to Index