How to hack websites and damage to a web application using Cross-Site Scripting (XSS) vulnerabilities

08/08/2011 23:34

Cross-Site Scripting (XSS) is a common flaw in web applications today. XSS flaws can cause serious damage to a web application. Detecting XSS vulnerabilities early in the development process will help protect a web application from unnecessary flaws. XSS-me is the Exploit-Me tool used to detect reflected XSS vulnerabilities.

XSS-Me is the Exploit-Me tool to test reflexes Cross-Site Scripting (XSS). Not currently test for stored XSS.rnrnThe instrument works by sending HTML forms and substituting the value of the strings that represent XSS attack.rnrnIf resulting HTML page to set a specific value JavaScript (document.vulnerable = true) then the tool marks the vulnerable page XSS string to date. rnrnThe tool does not attempt to compromise the security of the system is given. E 'for possible starting points to attack the system. There is no gate packet sniffing, password hacking or firewall attacks done tool.rnrnYou can not think of himself as a working tool QA testers from the site manually entering all of these areas strings.