Tools starting with X

Looking for new tools to extend your tool box? The top 100 list of best security tools is a great start.

Xplico

Xplico is a forensics analysis tool to investigate the traffic patterns in a pcap file. It is released as a GPL project, with some scripts under a CC license.

XRay

XRay is a security tool for reconnaissance, mapping, and OSINT gathering from public networks.

XSSER

XXSER leverages the execution of arbitrary code on the web server when an administrative user inadvertently triggers a hidden XSS payload.

XSS Hunter

XSS Hunter helps with finding XSS attacks and trigger a warning when one is succesful. It exists as an online service, or self-hosted installation.

XSStrike

XSStrike is tool for penetration testers and developers to test web applications. It scans a web application for any possible cross-site scripting weakness. With its own fuzzing engine, it might find rare issues. XSStrike can also discover the presence of a web application firewall (WAF).


Latest release: 3.1.4 [April 8, 2019]
RSS feed icon for Linux security tools

Recently reviewed

  • Wapiti (vulnerability scanner for web applications)
  • Vuls (agentless vulnerability scanner)
  • Cppcheck (static code analyzer)
  • Zeek (network security monitoring tool)
  • XSStrike (XSS detection and exploitation suite)
  • Decentraleyes (local CDN emulation for privacy)
  • RootHelper (script to retrieve exploitation tools)
  • graudit (static code analysis tool)
  • Suhosin7 (Suhosin security extension for PHP 7.x)
  • gosec (Golang security checker)
  • siemstress (basic SIEM solution)
  • CMSeeK (CMS detection and exploitation)
  • Malice (VirusTotal clone)
  • Bleach (sanitizing library for Django)
  • SQLMate (a friend of SQLMap with additional features)
  • Termineter (smart meter security framework)
  • tlsenum (enumeration tool for TLS)
  • hBlock (ad blocking and tracker/malware protection)
  • Malscan (malware scanner for web servers)
  • massh-enum (OpenSSH user enumeration)
  • BDA (vulnerability scan for Hadoop and Spark)
  • SubFinder (subdomain scanner)
  • Prowler (AWS benchmark tool)
  • GitMiner (Git data miner)
  • Hash Buster (find cleartext of hash)