XSSassin - Payload Injector por yesmayank
Security testing: inject payloads into input fields. XSS, SQLi, HTML injection and more.
Disponible en Firefox para Android™Disponible en Firefox para Android™
Metadata de la extensión
Capturas de pantalla
Sobre esta extensión
Security testing: inject payloads into input fields. XSS, SQLi, HTML injection and more.
XSSassin: The Ultimate Payload Injector for Pentesters & Bug Bounty Hunters
XSSassin is an advanced security testing extension designed specifically for ethical hackers, penetration testers, and security-conscious developers. Seamlessly inject common attack payloads directly into web page input fields to test for vulnerabilities like XSS, SQLi, and more—all with a single click!
🚀 CORE FEATURES:
One-Click Injection: Hover over any text field, textarea, or contenteditable area to instantly reveal quick-inject buttons.
Massive Payload Library: Built-in payloads for Cross-Site Scripting (XSS), SQL Injection (SQLi), HTML Injection, NoSQL, LDAP, OS Command Injection, XPath, SSTI, CRLF, and XXE.
Custom Payloads: Tailor your pentesting arsenal by adding your own custom payloads in the extension options.
Auto-Fill All: Hunting for bugs? Fill every input on a target page with your default or a random payload simultaneously.
Per-Site Toggling: Easily enable or disable the extension on specific domains to keep your regular browsing clean.
🛠 WHO IS THIS FOR?
Bug Bounty Hunters looking to speed up manual testing.
Penetration Testers conducting web application security assessments.
QA Engineers and Developers ensuring their forms are sanitized and secure.
⚠️ IMPORTANT / DISCLAIMER:
XSSassin is built strictly for educational purposes and authorized ethical hacking. Only use this tool on applications you own or have explicit permission to test. The developers assume no liability for misuse.
XSSassin: The Ultimate Payload Injector for Pentesters & Bug Bounty Hunters
XSSassin is an advanced security testing extension designed specifically for ethical hackers, penetration testers, and security-conscious developers. Seamlessly inject common attack payloads directly into web page input fields to test for vulnerabilities like XSS, SQLi, and more—all with a single click!
🚀 CORE FEATURES:
One-Click Injection: Hover over any text field, textarea, or contenteditable area to instantly reveal quick-inject buttons.
Massive Payload Library: Built-in payloads for Cross-Site Scripting (XSS), SQL Injection (SQLi), HTML Injection, NoSQL, LDAP, OS Command Injection, XPath, SSTI, CRLF, and XXE.
Custom Payloads: Tailor your pentesting arsenal by adding your own custom payloads in the extension options.
Auto-Fill All: Hunting for bugs? Fill every input on a target page with your default or a random payload simultaneously.
Per-Site Toggling: Easily enable or disable the extension on specific domains to keep your regular browsing clean.
🛠 WHO IS THIS FOR?
Bug Bounty Hunters looking to speed up manual testing.
Penetration Testers conducting web application security assessments.
QA Engineers and Developers ensuring their forms are sanitized and secure.
⚠️ IMPORTANT / DISCLAIMER:
XSSassin is built strictly for educational purposes and authorized ethical hacking. Only use this tool on applications you own or have explicit permission to test. The developers assume no liability for misuse.
Rated 0 by 0 reviewers
Permissions and data
Permisos requeridos:
- Acceder a las pestañas del navegador
- Acceder a tus datos para todos los sitios web
Permisos opcionales:
- Acceder a tus datos para todos los sitios web
Data collection:
- The developer says this extension doesn't require data collection.
Más información
- Enlaces del complemento
- Versión
- 1.3.2
- Tamaño
- 450,13 KB
- Última actualización
- hace 3 días (22 de abr. de 2026)
- Categorías relacionadas
- Licencia
- Apache License 2.0
- Historial de versiones
- Añadir a la colección