search

hahwul / dalfox

🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.
https://dalfox.hahwul.com
MIT License
3.55k stars 397 forks source link

Duplicate output? #429

Open dkegel-fastly opened 1 year ago

dkegel-fastly commented 1 year ago

Describe the bug

dalfox appears to be repeating scans of the same url and payload? e.g.

$ urls | dalfox pipe \
                --skip-mining-dict \
                --deep-domxss \
                --remote-payloads=payloadbox,portswigger
...
[#36] http://127.0.0.1:9093/angular/angular_body/1.2.0?q=code
[#37] http://127.0.0.1:9093/angular/angular_body/1.2.0?q=code
[#38] http://127.0.0.1:9093/angular/angular_body/1.2.0?q=code

Environment