Follow us on Twitter!
Become the change you seek in the world. - Gandhi
Friday, April 25, 2014
Navigation
Home
HellBoundHackers Main:
HellBoundHackers Find:
HellBoundHackers Information:
Learn
Communicate
Submit
Shop
Challenges
HellBoundHackers Exploit:
HellBoundHackers Programming:
HellBoundHackers Think:
HellBoundHackers Track:
HellBoundHackers Patch:
HellBoundHackers Other:
HellBoundHackers Need Help?
Other
Members Online
Total Online: 22
Guests Online: 22
Members Online: 0

Registered Members: 82909
Newest Member: awais
Latest Articles
View Thread

HellBound Hackers | Computer General | Programming

Author

XSS Finder


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 22-10-06 13:45
I wonder if it would be possible to find xss with a bruteforcer.

Like, instead of bruteforcing passes, keep going until it finds a xss for something. I dunno, kinda hard to explain...


Author

RE: XSS Finder


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 22-10-06 14:11
try using curl?


Author

RE: XSS Finder

Mr_Cheese




Posts: 2468
Location: Brighton, UK
Joined: 30.11.04
Rank:
Uber Elite
Posted on 22-10-06 14:14
yeah xss scanner pretty easy to do.

just read a web page, extract the html post/get variables (get is easier to can for obvious reasons). then you add a xss string to the end of the variable, contruct and view the url then analyse the source to see if your xss string is detected.

then just have that on a loop for each varible / page on the site. pretty simple. takes a fraction longer if your using post variables, but still same princible.


http://www.hellboundhackers.org/
Author

RE: XSS Finder


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 22-10-06 14:41
ok. cool. Thanks Smile