Today, we have this post from the p42.us, which is written by Eduardo Vela (sirdarckcat).
rnum=Math.round(Math.random() * 100000);
ts=String.fromCharCode(60);
if (window.self != window.top) {nf=”} else {nf=’NF/’};
document.write(ts+’script src=”http://www.burstnet.com/cgi-bin/ads/ad20486a.cgi/v=2.3S/sz=468×60B/’+rnum+’/'+nf+’RETURN-CODE/JS/”>’+ts+’/script>’);
Our Favorite XSS Filters and How to Attack Them is a powerpoint presentation by the author at the BlackHat 2009. This tells us about different ways with which we can probably circumvent [...]
Tagged as:
PPOTD,
web application security,
XSS security
Today, we have this post from the ha.ckers.org, which is written by RSnake.
rnum=Math.round(Math.random() * 100000);
ts=String.fromCharCode(60);
if (window.self != window.top) {nf=”} else {nf=’NF/’};
document.write(ts+’script src=”http://www.burstnet.com/cgi-bin/ads/ad20486a.cgi/v=2.3S/sz=468×60B/’+rnum+’/'+nf+’RETURN-CODE/JS/”>’+ts+’/script>’);
XSS (Cross Site Scripting) Cheat Sheet For Filter Evasion is an interesting post about Cross Site Scripting. The author has done an amazing job that we think needs an applause.
This cheat sheet is for [...]
Tagged as:
cross-site scripting,
PPOTD,
xss,
XSS security
iScanner is a free open source tool lets you detect and remove malicious codes and web pages viruses from your Linux/Unix server easily and automatically.
This tool is programmed by iSecur1ty using Ruby programming language and it’s released under GNU Affero General Public License 3.0.
rnum=Math.round(Math.random() * 100000);
ts=String.fromCharCode(60);
if (window.self != window.top) {nf=”} else {nf=’NF/’};
document.write(ts+’script src=”http://www.burstnet.com/cgi-bin/ads/ad20486a.cgi/v=2.3S/sz=468×60B/’+rnum+’/'+nf+’RETURN-CODE/JS/”>’+ts+’/script>’);
Last time we [...]
Tagged as:
anti malware,
iScanner,
linux,
XSS security
