How Dalfox prepared their website for AI search
Dalfox is a powerful open-source XSS scanning tool that automates the detection and verification of cross-site scripting vulnerabilities for security experts.
55
Lines
-96% vs avg
3
Sections
-87% vs avg
742+
Companies
using llms.txt
2
Files
llms.txt + full
Key Insights
Focused approach
A streamlined 3-section structure keeps things simple and scannable.
Optimal length
At 55 lines, this file balances detail with AI context window efficiency.
Two-file approach
Uses both llms.txt and llms-full.txt for different AI use cases.
llms.txt Preview
First 55 lines of 55 total
# Dalfox
> Dalfox is a fast, powerful open-source XSS scanning tool written in Go. It focuses on automation to streamline the process of detecting and verifying cross-site scripting vulnerabilities.
Dalfox (where "Dal" is the Korean word for "moon" and "Fox" stands for "Finder Of XSS") is a comprehensive command-line tool designed for security professionals. It excels at finding XSS vulnerabilities through various modes including URL scanning, file-based inputs, pipeline processing, and REST API server capabilities. The tool offers advanced parameter analysis, DOM mining, and headless browser verification for thorough security testing.
## Basic Usage
```bash
# Basic command structure
dalfox [mode] [target] [flags] # e.g., dalfox url https://example.com --worker=50
# Scan a single URL
dalfox url https://example.com
# Use blind XSS with callback URL
dalfox url https://example.com -b https://your-callback-url.com
# Scan multiple URLs from a file
dalfox file urls.txt
# Process URLs from pipe
cat urls.txt | dalfox pipe
# Start as a REST API server
dalfox server --host 0.0.0.0 --port 8080
# Start as a MCP server
dalfox server --type=mcp
# Use with custom payloads
dalfox url https://example.com --custom-payload payloads.txt
# Output in JSON format
dalfox url https://example.com --format json -o results.json
```
## Docs
- [Installation Guide](https://dalfox.hahwul.com/page/installation/) - Complete instructions for installing Dalfox on various platforms including Homebrew, Snapcraft, Go, and Docker.
- [Quick Start](https://dalfox.hahwul.com/page/overview/) - Introduction to Dalfox with key features and basic usage examples.
- [Usage Guide](https://dalfox.hahwul.com/page/usage/) - Detailed documentation on all available modes, options, and flags for customizing scans.
- [Running Dalfox](https://dalfox.hahwul.com/page/running/) - Specific guides for different scanning scenarios (single URL, multiple URLs, raw requests).
- [Advanced Features](https://dalfox.hahwul.com/advanced/features/) - Documentation on specialized features like remote payloads, custom payloads, and BAV analysis.
- [Configuration](https://dalfox.hahwul.com/advanced/config/) - Information on using configuration files for consistent scanning settings.
## Optional
- [GitHub Repository](https://github.com/hahwul/dalfox) - Source code and issue tracking for the Dalfox project.
- [Community Resources](https://dalfox.hahwul.com/community/resources/) - Articles, videos, and tutorials from the Dalfox community.
- [API Documentation](https://dalfox.hahwul.com/page/modes/server-mode/#api-documentation) - Details on using Dalfox's REST API server mode.
- [MCP Integration](https://dalfox.hahwul.com/page/running/mcp/) - Guide to using Dalfox with AI assistants through Model Context Protocol.
- [GitHub Actions](https://dalfox.hahwul.com/page/running/github-action/) - Instructions for integrating Dalfox into CI/CD workflows.
- [Library Usage](https://dalfox.hahwul.com/page/running/code/) - Documentation on using Dalfox as a Go library in your own projects.
Dalfox is ready for AI search. Are you?
Join 742+ companies preparing their websites for the future of search. Create your llms.txt file in minutes.
Generate Your llms.txtDon't get left behind
Your competitors are preparing for AI search.
Dalfox has 3 organized sections ready for AI crawlers. Generate your llms.txt file and join the companies optimizing for the future of search.