KNOXSS Community Edition

Tool for XSS (Cross-Site Scripting) discovery.

KNOXSS Community Edition - XSS Discovery Tool

KNOXSS Community Edition is a free Firefox add-on designed to find XSS (Cross-Site Scripting) cases quickly and efficiently. It can detect various XSS cases in GET and POST requests, providing a high speed of discovery. While it may have some false positives and false negatives, it is a valuable tool for XSS discovery.

Download

View on Firefox Browser Add-ons

Add-on stats

By: Brute Logic

Users: 416

-5

Rating: 4.00

(4)

Version: 0.2.0 (Last updated: 2019-08-12)

Version code: undefined

Creation date: 2019-07-02

Weekly download count: 24

Firefox on Android: No

Risk impact: High risk impact

Risk likelihood:

Low risk likelihood

Manifest version: 2

Permissions:

tabs
activeTab
webRequest
webNavigation
webRequestBlocking
notifications
<all_urls>

Size: 18.63K

Email: br*****@null.net

URLs: Website

Ranking

# 4,743 ▼ 25

Other rankings

#1 in community keyword 8 ▲

#11 in video editing keyword 7

#46 in css editor keyword 26

#54 in text editor keyword 24 ▼ 1

#75 in united keyword 21 ▼ 2

Upgrade to see more rankings

Other platforms

Not available on Chrome

Not available on Android

Not available on Edge

Want to check extension ranking and stats more quickly for other Firefox add-ons? Install Chrome-Stats extension to view Firefox-Stats data as you browse the Firefox Browser Add-ons.

Add-on summary

Analyze keywords

KNOXSS Community Edition is a FREE standalone version of KNOXSS browser add-on designed to find the main XSS (Cross-Site Scripting) cases shown here.

In current version (beta 0.2.0) it can detect all XSS cases below for GET and POST requests. Just open one of the testing URLs and click on add-on's icon in your Firefox.

Main advantages include HIGH SPEED and GOOD EFFICIENCY to find covered cases in regular scenarios (exact reflection of input in response).

Unfortunately it's very prone to both false positive and false negative since it works by parsing the source code not by actual detection of JavaScript execution like main KNOXSS does.

Here are the URLs (XSS cases) for testing:

GET Method: https://brutelogic.com.br/gxss.php?a=any https://brutelogic.com.br/gxss.php?b1=any https://brutelogic.com.br/gxss.php?b2=any https://brutelogic.com.br/gxss.php?b3=any

User reviews

Gan Jing World is a clean, curated universe and a dynamic, overlapping network of integrated platforms and services. ==> https://www.ganjing.com

by GanJingWorld, 2022-12-23

View all user reviews

Add-on safety

Risk impact

KNOXSS Community Edition requires some sensitive permissions that could impact your browser and data security. Exercise caution before installing.

Risk likelihood

KNOXSS Community Edition has earned a fairly good reputation and likely can be trusted.

Upgrade to see risk analysis details