PHP_Code_Static_Analysis A basic script to detect vulnerabilities into a PHP source code Currently detecting : SQL injection Local File Inclusion Insecure emails Cross Site Scripting…View More Vulny-Code-Static-Analysis: detect vulnerabilities into a PHP source code
Shuriken was developed by Shogun Lab as an open source Cross-Site Scripting (XSS) command line utility to aid web security researchers who want to test…View More shuriken: Cross Site Scripting scanner
xsssniper is a handy xss discovery tool with mass scanning functionalities. What it does is scanning target URL for GET parameters and then inject an…View More xsssniper: An automatic XSS discovery tool
Damn Web Scanner Another web vulnerabilities scanner, this extension works on Chrome and Opera. The extension is working in the background and will notify you…View More Damn Web Scanner: web vulnerabilities scanner
On this post, i want to introduce the tips to bypass XSS filter. Cross Site Scripting (XSS) is a Web application attack in the data…View More Everythings do to bypass XSS filter
In the XSS world, there are many tags, events, attributes can be used to execute js. Tag can execute js <script> <a> <p> <img> <body>…View More Bypassing XSS filters
1. What is Cross Site Scripting? Cross Site Scripting (Cross Site Scripting, XSS) is a Web application attack in the data output to the page…View More What is Cross-Site Scripting (XSS)?