[Full-disclosure] [Owasp-leaders] new version of XSSDB
Dinis Cruz
dinis at ddplus.net
Mon Jul 23 23:44:07 BST 2007
This is very good stuff
And it really shows the power of XSS.
Anybody with some cycles to add offline support for this (maybe retrieving
the RSS from the local disk)?
Dinis Cruz
Chief OWASP Evangelist
http://www.owasp.org
On 7/21/07, pdp (architect) <pdp.gnucitizen at googlemail.com> wrote:
>
> Hi there,
>
> GC has released a new version of XSSDB
> (http://www.gnucitizen.org/xssdb). The current version contains an XSS
> testing tool which is there to try each payload against the
> applications your are testing. You can submit XSS payloads.
>
> We are still in beta/alpha stage but gradually moving forward. Your
> feedback will be greatly appreciated. We are also working on a toolkit
> for Technika to automate some other tasks.
>
> thanks for the interest
>
> P.S. according to .mario, our leading database maintainer and founder
> of the PHPIDS group, there will be more then 50 new payload additions
> for the following couple of weeks.
>
> --
> pdp (architect) | petko d. petkov
> http://www.gnucitizen.org
> _______________________________________________
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-leaders
>
--
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20070723/83e101db/attachment.html
Full-Disclosure is hosted and sponsored by Secunia.