https://haqpl.github.io/Automation-of-KNOXSS-entension-using-Selenium-and-Python
- Install firefox-developer
https://download.mozilla.org/?product=firefox-devedition-latest-ssl&os=linux64&lang=pl
-
pip install selenium --user
# requires Python -
Download geckodriver, it should be placed in /usr/bin or add it to PATH
https://github.com/mozilla/geckodriver/releases
- Download XPI with KNOXSS Pro
- Login to http://knoxss.me and retrieve session Cookies, pass them to -c argument.
-u
or--url
- defines the target for the scan-c
or--cookies
- defines the session Cookies for logged in user to KNOXSS service-f
or--firefox
- defines the location of Firefox Developer edition binary-a
or--addon
- defines the location of KNOXSS extension directory, unzipped and modified-t
or--timeout
- defines the timout for event
python3 automate_knoxss.py -u "https://target" -c "wordpress_logged_in_...=...; wordpress_sec_...=...; sucuri_cloudproxy_uuid_...=...; wordpress_test_cookie=WP+Cookie+check;" -f /home/firefox/firefox -a knoxss -t 90