Team Pizzabyte proudly presents the new PizzaScan tool! This tool automates finding bugs (Specificly XSS) with minimal amount of requests.
Update: For some reason the python script doesn't always save to output.txt. I've created debug.txt at the end to ensure that nothing is missed.
Installation:
git clone https://github.com/frostb1ten/PizzaScan
cd PizzaScan
chmod +x Pizzascan.sh
For help
./Pizzascan.sh -h
For a single domain
./Pizzascan.sh -s URL
For collecting subdomains AND checking sites
./Pizzascan.sh -b URL
For checking a single url (with multiple Params)
./Pizzascan.sh -u "https://URL/param1=anything¶m2=anything"
All vulnerable sites will display in output.txt
***This tool is for VDP/Bugbounty useage only. We are not liable for any damages or trouble caused by this scanner.***
Credits to https://github.com/devanshbatham/ParamSpider and https://github.com/bing0o/SubEnum for such amazing tools.