lsof -s | awk ‘$5 == “REG”‘ | sort -n -r -k 7,7 | head -n 50
Why should be useful take a look on already discovered XSS?
Because very often a single XSS vulnerability maybe replicated over the whole application or in a single part of it. apart from this it very interesting to understand methodology used by others to find vulnerability. So take a look at these lists and learn from already discovered XSS vulnerabilities: