Posts: 2468 Location: Brighton, UK Joined: 30.11.04 Rank: Uber Elite
Posted on 22-10-06 14:14
yeah xss scanner pretty easy to do.
just read a web page, extract the html post/get variables (get is easier to can for obvious reasons). then you add a xss string to the end of the variable, contruct and view the url then analyse the source to see if your xss string is detected.
then just have that on a loop for each varible / page on the site. pretty simple. takes a fraction longer if your using post variables, but still same princible.
RE: XSS Finder
Posts: Location: Joined: 01.01.70 Rank: Guest
Posted on 22-10-06 14:41
ok. cool. Thanks
Hellbound Hackers is the collective work of the staff and the community and is therefore licensed under the CC BY-NC-SA license.