trooper
XSS AGENT + API

XSS Detection Agent
Plus API to Build Your Own

Our agent hunts XSS bugs 24/7. Point it at your site, get alerts. Or use our API to build custom agents for your workflow.

Auto-discovery
Real-time alerts
Zero config

How It Works

Two ways to hunt XSS: Use our agent or build your own

1. Point at Your Target
Give our agent a URL or create a callback payload for manual testing.
2. Agent Scans or You Test
Our agent hunts automatically, or inject your own payloads using our API.
3. Get Instant Alerts
XSS detected? Get notified immediately with full PoC and exploit details.
[SYSTEM_CAPABILITIES]

Agent. API. Total Control.
We Hunt. You Build.

Use our XSS agent out of the box, or build custom agents with our API. Your call.

Managed XSS Agent

Our agent crawls your site, tests every input. No setup, no maintenance. Just point and scan.

Real-Time Alerts

XSS detected? You'll know immediately. Instant alerts straight to your inbox or webhook.

Battle-Tested Payloads

Custom payload arsenal that breaks through filters. Tests DOM XSS, reflected, stored—everything.

Smart Detection

Filters out the noise. Every alert is tested and verified before hitting your inbox.

Proof of Exploit

Every bug comes with working PoC. Copy, paste, pwn. Show devs exactly how it breaks.

Build Your Own Agents

Full API access to create custom agents. Hook into your workflow, CI/CD, or build something wild.

Schedule a Free Strategic Consultation

Talk to our security experts. Get a custom plan for your needs. No pressure, just guidance.

Book Now

Simple. Transparent.

Try free, upgrade when you're ready to scale

Free Forever
Free Plan
Test the waters, no credit card needed
$0/mo
  • Basic XSS payloads
  • Limited email notifications
  • 1 callback URL
For Developers
Starter Plan
Build your own agents with API access
$50/mo
  • Everything in Free, plus:
  • Full API access
  • Build custom XSS agents
  • Advanced XSS payloads
  • 100 callback URLs
  • Webhook integrations
  • Email support
Popular
Best Value
Pro Plan
Use our managed XSS scanning agent
$200/mo
  • Everything in Starter, plus:
  • Our managed XSS agent
  • Autonomous scanning (24/7)
  • 50 application scans per month
  • Unlimited email alerts
  • Unlimited callback URLs
  • Priority support
Custom
Enterprise
Unlimited scans & full API access
Custom
  • Everything in Pro, plus:
  • Unlimited agent scans
  • Unlimited callback URLs
  • Custom integrations
  • Dedicated support
  • SLA guarantee
  • White-label options
Contact Sales
Development Pipeline

More Tools Coming

Subdomain takeover detection, CORS misconfiguration scanner, and more automated bug hunting tools. Join the waitlist.