Merlin
KNOXSS Community Edition

KNOXSS Community Edition

Tool for XSS (Cross-Site Scripting) discovery.

What is KNOXSS Community Edition?
KNOXSS Community Edition is a free Firefox add-on designed to find XSS (Cross-Site Scripting) cases quickly and efficiently. It can detect various XSS cases in GET and POST requests, providing a high speed of discovery. While it may have some false positives and false negatives, it is a valuable tool for XSS discovery.
Download
Merlin
Stats
Users: 445 ▼ -1
Rating: 4.00 (4)
Version: 0.2.0 (Last updated: 2019-08-12)
Creation date: 2019-07-02
Weekly download count: 30
Firefox on Android: No
Risk impact: High risk impact
Risk likelihood: Low risk likelihood
Manifest version: 2
Permissions:
  • tabs
  • activeTab
  • webRequest
  • webNavigation
  • webRequestBlocking
  • notifications
  • <all_urls>
Size: 18.63K
URLs: Website
Stats date:

Chrome-Stats Rank

# 4810 ▲ 37
Other rankings
Upgrade to see more rankings

Other platforms

Not available on Chrome
Not available on Edge
Want to check extension ranking and stats more quickly for other Firefox add-ons? Install Chrome-Stats extension to view Chrome-Stats data as you browse the Firefox Browser Add-ons.
Chrome-Stats extension
Merlin
Summary
Analyze keywords

KNOXSS Community Edition is a FREE standalone version of KNOXSS browser add-on designed to find the main XSS (Cross-Site Scripting) cases shown here.

In current version (beta 0.2.0) it can detect all XSS cases below for GET and POST requests. Just open one of the testing URLs and click on add-on's icon in your Firefox.

Main advantages include HIGH SPEED and GOOD EFFICIENCY to find covered cases in regular scenarios (exact reflection of input in response).

Unfortunately it's very prone to both false positive and false negative since it works by parsing the source code not by actual detection of JavaScript execution like main KNOXSS does.

Here are the URLs (XSS cases) for testing:

GET Method: https://brutelogic.com.br/gxss.php?a=any https://brutelogic.com.br/gxss.php?b1=any https://brutelogic.com.br/gxss.php?b2=any https://brutelogic.com.br/gxss.php?b3=any

See more
User reviews
Gan Jing World is a clean, curated universe and a dynamic, overlapping network of integrated platforms and services. ==> https://www.ganjing.com
by GanJingWorld, 2022-12-23
View all user reviews
Safety
Risk impact

KNOXSS Community Edition is risky to use as it requires a number of sensitive permissions that can potentially harm your browser and steal your data. Exercise caution when installing this add-on. Review carefully before installing. We recommend that you only install KNOXSS Community Edition if you trust the publisher.

Risk likelihood

KNOXSS Community Edition has earned a fairly good reputation and likely can be trusted.

Upgrade to see risk analysis details
Screenshots
KNOXSS Community Edition