Skip to content

sp1r1tt/spectrexss

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

28 Commits
.vscode
.vscode
 
 
public
public
 
 
src
src
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
astro.config.mjs
astro.config.mjs
 
 
components.json
components.json
 
 
package.json
package.json
 
 
tsconfig.json
tsconfig.json
 
 

Repository files navigation

Product Image

SpectreXSS is a modern web application designed to scan websites for potential Cross-Site Scripting (XSS) vulnerabilities. Built with cutting-edge technologies, it provides a user-friendly interface for security professionals and developers to identify and mitigate Reflected XSS risks.

Product Video

Watch this video to see SpectreXSS in action:

Watch the SpectreXSS on YouTube

🛠️ Technologies Used

  • Frontend Framework: Astro - A modern static site generator that allows for fast, optimized websites.
  • Styling: Tailwind CSS - A utility-first CSS framework for rapid UI development.
  • State Management: React Hooks (useState, useEffect) - For managing component state and side effects.
  • Playwright: A browser automation library used for testing URLs by emulating a real browser environment to detect XSS vulnerabilities.
  • Astro API Routes: - For handling server-side logic.
  • Astrojs/node: For create a standalone server.
  • Toast Notifications: Sonner - A lightweight toast notification library.
  • Radix UI: Radix UI - Unstyled, accessible UI primitives for building design systems.
  • React: - JavaScript library for building user interfaces, integrated with Astro for dynamic components.
  • React Bits: Library with animated UI components.

🚀 Getting Started

Prerequisites

  • Node.js (v18 or higher)
  • npm (v9 or higher)

Installation

  1. Clone the repository: 
    git clone https://github.com/sp1r1tt/spectrexss.git
cd spectrexss
  2. Install dependencies:: 
    npm install
  3. Running the Development Server:: 
    npm run dev
  4. Open your browser: Visit http://localhost:4321 to see the application running.

🕵️‍♂️ How to Use SpectreXSS

Enter a URL: Input the URL of the website you want to scan in the provided field.

Upload Custom Payloads: Optionally, upload a .txt file containing custom XSS payloads.

Upload URLs: Optionally, upload a .txt file containing multiple URLs to scan.

Start Scanning: Click the "Scan" button to begin the vulnerability scan.

View Results: The results will be displayed in the "Vulnerabilities" tab, showing any detected XSS vulnerabilities along with details such as payloads and test URLs.

📂 Project Structure

/
├── public/                  # Static assets (favicon)
├── src/
│   ├── assets/              # Project assets (images, logos)
│   ├── components/          # React components
│   ├── layouts/             # Layout components
│   ├── lib/                 # Modules
│   ├── pages/               # Astro pages
│   ├── styles/              # Global styles and Tailwind configuration
├── astro.config.mjs         # Astro configuration
├── package.json             # Project dependencies and scripts
└── tsconfig.json            # TypeScript configuration

📜 License

This project is licensed under the BSD-3-Clause. See the LICENSE file for details.

⚠️ Warning

SpectreXSS is intended for educational and ethical hacking purposes only. It should only be used to test systems you own or have explicit permission to test. Unauthorized use of third-party websites or systems without consent is illegal and unethical.

Happy scanning! 🚀

About

SpectreXSS - XSS Vulnerability Scanner

Resources

Readme

License

BSD-3-Clause license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages