.\" Generated by kramdown-man 0.1.8
.\" https://github.com/postmodern/kramdown-man#readme
.TH ronin-vulns-reflected-xss 1 "May 2022" Ronin "User Manuals"
.LP
.SH SYNOPSIS
.LP
.HP
\fBronin-vulns reflected-xss\fR \[lB]\fIoptions\fP\[rB] \[lC]\fIURL\fP \.\.\. \[or] \fB--input\fR \fIFILE\fP\[rC]
.LP
.SH DESCRIPTION
.LP
.PP
Scans URL(s) for reflected Cross Site Scripting (XSS) vulnerabilities\. The URLs
to scan can be given as additional arguments or read from a file using the
\fB--input\fR option\.
.LP
.SH ARGUMENTS
.LP
.TP
\fIURL\fP
A URL to scan\.
.LP
.SH OPTIONS
.LP
.TP
\fB--first\fR
Only find the first vulnerability for each URL\.
.LP
.TP
\fB-A\fR, \fB--all\fR
Find all vulnerabilities for each URL\.
.LP
.TP
\fB-H\fR, \fB--header\fR \[lq]\fIName\fP: \fIvalue\fP\[rq]
Sets an additional header using the given \fIName\fP and \fIvalue\fP\.
.LP
.TP
\fB-C\fR, \fB--cookie\fR \fICOOKIE\fP
Sets the raw \fBCookie\fR header\.
.LP
.TP
\fB-c\fR, \fB--cookie-param\fR \fINAME\fP\fB=\fR\fIVALUE\fP
Sets an additional \fBCookie\fR param using the given \fINAME\fP and \fIVALUE\fP\.
.LP
.TP
\fB-R\fR, \fB--referer\fR \fIURL\fP
Sets the \fBReferer\fR header\.
.LP
.TP
\fB-F\fR, \fB--form-param\fR \fINAME\fP\fB=\fR\fIVALUE\fP
Sets an additional form param using the given \fINAME\fP and \fIVALUE\fP\.
.LP
.TP
\fB--test-query-param\fR \fINAME\fP
Tests the URL query param name\.
.LP
.TP
\fB--test-all-query-params\fR
Test all URL query param names\.
.LP
.TP
\fB--test-header-name\fR \fINAME\fP
Tests the HTTP Header name\.
.LP
.TP
\fB--test-cookie-param\fR \fINAME\fP
Tests the HTTP Cookie name\.
.LP
.TP
\fB--test-all-cookie-params\fR
Test all Cookie param names\.
.LP
.TP
\fB--test-form-param\fR \fINAME\fP
Tests the form param name\.
.LP
.TP
\fB-i\fR, \fB--input\fR \fIFILE\fP
Reads URLs from the given \fIFILE\fP\.
.LP
.TP
\fB-h\fR, \fB--help\fR
Print help information\.
.LP
.SH AUTHOR
.LP
.PP
Postmodern 
.MT postmodern\.mod3\[at]gmail\.com
.ME
.LP
.SH SEE ALSO
.LP
.PP
ronin\-vulns\-scan(1)