In this blog post, I want to show you, how to find XSS vulnerabilities with help of Sqlmap!
1 — Find URL’s with parameters
2 — Pass the ‘URL with the parameters’ to sqlmap => sqlmap -u https://xss-game.appspot.com/level1/frame?query=test
3 — If sqlmap found any reflected value or potential XSS, informs you!
4 — Verify the XSS vulnerability with your browser (with a list of XSS payloads)or any other tools.
I hope this will be useful.