Posts tagged as:

XSS exploiting tool

Pixy – Tool for finding XSS and SQLI vulnerabilities

by Black on November 28, 2009 · 0 comments

in Open Source, Security Reconnaissance, Security tools, Source Code

Cross-site scripting (XSS) and SQL injection (SQLI) vulnerabilities are present in many modern web applications, and are reported continuously on pages such as BugTraq. In the past, finding such vulnerabilities usually involved manual source code audits. Unfortunately, this manual vulnerability search is a very tiresome and error-prone task. Pixy will help you find some!
What is [...]

Tagged as: , , ,

{ 0 comments }

XSSTunnel: HTTP traffic through a XSS Channel!

by Black on November 22, 2009 · 0 comments

in Anonymity, Open Source, Security tools

Cross-site scripting (XSS) is a type of computer security vulnerability typically found in web applications which enable malicious attackers to inject client-side script into web pages viewed by other users. XSS Tunnel runs in conjunction with XSS Shell, which is a powerful XSS backdoor. XSS Shell allows interactively getting control over a Cross-site Scripting vulnerability [...]

Tagged as: , , , , ,

{ 0 comments }

Yokoso create fingerprinting code that is deliverable through some form of client attack

by Black on October 31, 2009 · 1 comment

in Open Source, Security Reconnaissance, Security tools, Web Application Penetration Testing

Yokoso! is a project focused on creating fingerprinting code that is deliverable through some form of client attack. This can be used during penetration tests that combine network and web applications. One of the most common questions we hear is “so what can you do with XSS?” and we hope that Yokoso! answers that question.

Yokoso! [...]

Tagged as: , , ,

{ 1 comment }

← Previous Entries