SkillAgentSearch skills...

Rexsser

This is a burp plugin that extracts keywords from response using regexes and test for reflected XSS on the target scope.

GenerateConvertImprove

Install / Use

/learn @profmoriarity/Rexsser
About this skill

Quality Score

0/100

Supported Platforms

Universal

README

rexsser

This is a burp plugin (python) that extracts keywords from response using regexes and test for reflected XSS on the target scope. Valid parameters reflected, vulnerable parameters are show in results in the rexsser extension tab.

Regexes

  • extract all javascript 'var' names from response page
  • ...

Screenshots

img

Requirements

  • Jython
  • BurpSuite

Todo

  • [ ] Add Multiple regexes to extract words (Example: input elements in the page response)
  • [x] Content-Type filter
  • [x] Scope checkbox
  • [x] Process only given status-codes
  • [x] Turn off/on

profmoriarity

View profile

View on GitHub
GitHub Stars75
CategoryDevelopment
Updated5d ago
Forks15
profmoriarity/rexsser

Languages

Python

Security Score

80/100

Audited on Mar 31, 2026

No findings