[<prev] [next>] [day] [month] [year] [list]
Message-ID: <4CD72C94.6070708@lordepsylon.net>
Date: Sun, 07 Nov 2010 23:47:48 +0100
From: psy <root@...depsylon.net>
To: full-disclosure@...ts.grok.org.uk,
Webappsec Group <websecurity@...appsec.org>
Subject: XSSer v1.0 aka "The Mosquito" released
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Dear All,
I am pleased to present the new version of *XSSer* (v1.0) - the cross
site scripter framework.
Description
========
XSSer is an open source penetration testing tool that automates the
process of detecting and exploiting XSS injections against different
applications.
It contains several options to try to bypass certain filters, and
various special techniques of code injection.
New Features
========
- - Added "final remote injections" option
- - Cross Flash Attack!
- - Cross Frame Scripting
- - Data Control Protocol Injections
- - Base64 (rfc2397) PoC
- - OnMouseMove PoC
- - Browser launcher
- - Code clean
- - Bugfixing
- - New options menu
- - Pre-check system
- - Crawler spidering clones
- - More advanced statistics system
- - "Mana" ouput results
- - [--]
Download
========
http://downloads.sourceforge.net/xsser/xsser-1.0.tar.gz
#XSSer Community:
========
- Lorea.org: https://n-1.cc/pg/groups/15466/xsser/
- Identi.ca: https://identi.ca/group/xsser
- Twitter : https://twitter.com/lord_epsylon/xsser
Contact
======
psy <root@...depsylon.net> / <epsylon@...eup.net>
------------
Time to fly the mosquito togheter...
Happy cross hacking!!
:D
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkzXLB4ACgkQdaGdezyqJbNB1ACfWWWyjA+SqmD1rFJLnDE4AE8n
ofkAnjL4/YxbBuXg+SFZ/7XCHwvXegxa
=fFj9
-----END PGP SIGNATURE-----
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists