Find XSS vulnerability Just By Browsing Target Website Using XSSTron

Find XSS vulnerability Just By Browsing Target Website Using XSSTron

Is it really easy to solve or find XSS vulnerabilities?

Yes! if you have the right tool on your hand. XSSTROn is basically a chromium-looking browser with a smooth interface. You just have to browse websites and it will automatically detect and show if the website is vulnerable to XSS and if it is, then how to exploit it.

You must try XSSTron atleast once and if you are a beginner, you should definitely try this amazing tool.

Let’s see how XSSTron can be configured and used.

Installing and Configuring XSSTRON

PS J:\Users\TheHawk\Downloads\XSSTRON-main\XSSTRON-main> npm install

> core-js@3.8.2 postinstall J:\Users\TheHawk\Downloads\XSSTRON-main\XSSTRON-main\node_modules\core-js
> node -e "try{require('./postinstall')}catch(e){}"

Thank you for using core-js ( https://github.com/zloirock/core-js ) for polyfilling JavaScript standard library!

The project needs your help! Please consider supporting of core-js on Open Collective or Patreon:
> https://opencollective.com/core-js
> https://www.patreon.com/zloirock

Also, the author of core-js ( https://github.com/zloirock ) is looking for a good job -)
> electron@11.2.0 postinstall J:\Users\TheHawk\Downloads\XSSTRON-main\XSSTRON-main\node_modules\electron
> node install.js
Downloading electron-v11.2.0-win32-x64.zip: [==================================================] 100% ETA: 0.0 seconds
npm WARN XSSTRON@1.0.0 No repository field.
npm WARN XSSTRON@1.0.0 license should be a valid SPDX license expression

added 91 packages from 99 contributors and audited 91 packages in 155.01s

6 packages are looking for funding
  run `npm fund` for details

found 0 vulnerabilities

So now that we have installed all required dependencies, now its time to launch XSSTRON.


PS J:\Users\TheHawk\Downloads\XSSTRON-main\XSSTRON-main> npm start                                                      
> XSSTRON@1.0.0 start J:\Users\TheHawk\Downloads\XSSTRON-main\XSSTRON-main
> electron .

After applying ‘npm start‘ command on the PowerShell, it will launch the nice-looking, smooth Electron browser.

Finding XSS Vulnerability using XSSTRON

Now we need to find an XSS vulnerable target. We are testing a Lab from the Web security academy powered by Portswigger. You can get one by simply signing up on https://portswigger.net and head over to the ‘All labs’ section and choose an XSS lab.

We chose the ‘Reflected XSS into HTML context with nothing encoded‘.

  • Start the lab, search for something on the search bar and copy the URL
  • Paste it on the XSSTRON browser and press Enter.
Creating an XSS vulnerable Lab

So, we’ve found one! let’s see what we’ve got on the popup window.

Found XSS vulnerability

The popup window is showing the tested payloads and also the payload that worked. Now copy the string and paste it on the ‘XSS lab’ search bar.

Found the payload

We have solved the lab.

solved the lab

That’s amazing! we passed the test.

Conclusion

Even if that was a simple XSS vulnerability, but still we got to know how useful the XSSTRON tool is. This is the thing in Ethical Hacking. Only knowledge is not enough, we must have the right tools with us.

The XSSTRON tool will be very useful for beginners and also for people who don’t like to use command-line interfaces.

What’s your opinion about XSSTRON? let us know in the comment box below.