Testing XSS Tools On Target Protected By WAF | 2024

For those who are saying this video is sponsored, Let me tell you all that it is not. It is just that i liked the tool and thought to share it with you all. Whether you are planning to buy it or not is completely up to you. Thanks

sponsored or not, im just disappointed by the fact that despite knowing the truth, you didn't let your audience know whats going on. its not the tool, its just the list of the payloads which any tool could use it and find same shit. Dalfox can do it if you pass those payloads. sponsoring is not bad, trying to cheat is. just be careful. you've worked hard to build your legacy. don't let cheap tricks get you or don't try to do cheap tricks on new bug bounty hunters. cuz sooner or later you will be called out. hope you don't repeat this in the future. and good luck

Love you bro I want ibrahim xss

Thanks mate !!

Hello., Tested the same target endpoint in Knoxss. This tool was also able to found xss

So I assume this is how the ibrahimxss tool works: The tool requires binding with google chrome where the tool tracks for any kind of popups in real time within the browser may be possible with that specific chrome driver. The tool then use payload file to send the request by appending the payload with in the browser. If any pop ups comes then, the tool picks a screenshot and include that url in the final generated report. This may be the reason why ibrahimxss got false positive as seen in your video. It simply tracks the popups in real time against the list of payloads. I am be wrong though! Let me know if anyone else think the other way. cheers!

Bro made a promotional video without saying it's Sponsored by Ibrahimxss 😂😂

I have same... Tool that exactly work like ibrahimxss but different is payload file.. If you have good payload list then..good. Same headless detection tool. No false posstie. And it's cost nothing free of cost. Thanks

Why not you doing ibrahim xss vs knoxss?

Why not knoxss

Akamai waf bypass?

Bro it is asking API but I not received it

Sir if u can then please give us that payoad lists used by the paid tool in this video.....

could you post the payload list of the last tool? you have github?

Mention that this is sponsored 🎉

good video tho

Which UI tool you are using to manage VPS(s) ?

can if you share the payload file that is very very helpful for us.

Brother make video on how to configure Firefox for burp on windows

is this tool also run in mac ?

dalfox can't even find a single shit , what a shame god knows what they r doing !

this video is sponsored it is very clear . but if u have mentioned it on the video it will not have cause this dissapointment. i dont mean any insults

Hello bhaiya windows theme bto apka jo h

First !!!

lol i tested it and it's not bypass any wafs and u didn't try knoxss because it's the best

Use tag as sponsored. Let me tell you why the tool owner is giving everyone to promote his tool i have seen many tweets which are bullshit

Its only the game of payload... not tool...

API KEY

Ibrahim XSS is scammer they all are paid

Don't use Ibrahim xss tools

Don't trust him it's a promotion of his channel and users. He is playing cheap tricks.

Bro only give this payload.txt file😂

Faking 😅

Disappointed :[

Xss tools suck lol manual is best way to do it if you actually want to find something besides false positives

First 😂

promotion

Why paid promotion 🥲

Disappointed