Hey there. I was just wondering if anyone had some time to discuss a bit about XSS and detection of it. How it stays on the server or if it doesn't stay at all. I am not interested in how to preform the attacks, that's pretty basic and straight forward. Noticing how people inject cookie loggers very regularly, as well as other remote execution, how safe are those from being discovered? Those being cookie loggers, I know defacing a page would look pretty out of the ordinary. Of course you don't host a site that you setup from your house, that's obvious enough, but how long would such a file remain active for. And is there a way I would be able to check when the cookies on a remote server expire? Well if anybody has a few minutes to elaborate on some of that, maybe even PM me, I am all ears. Well meanwhile, I am off to sleep. Have a good one.
RE: Looking for an XSS guru with a couple of minutes