lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Message-ID: <a97ac278-8d5b-3fad-f813-19ad4a986525@riseup.net>
Date: Sat, 16 Nov 2019 21:01:27 +0100
From: psy <epsylon@...eup.net>
To: fulldisclosure@...lists.org
Subject: [FD] XSSer v.1.8[2] - "The Hiv3!" released

Hi FD,

I am glad to present a new release of this tool:

  - https://xsser.03c8.net

---------

"Cross Site "Scripter" (aka XSSer) is an automatic -framework- to
detect, exploit and report XSS vulnerabilities in web-based
applications. It provides several options to try to bypass certain
filters and various special techniques for code injection."

---------

XSSer has pre-installed [ > 1300 XSS ] attacking vectors and can
bypass-exploit code on several browsers/WAFs:

 - [PHPIDS]: PHP-IDS
 - [Imperva]: Imperva Incapsula WAF
 - [WebKnight]: WebKnight WAF
 - [F5]: F5 Big IP WAF
 - [Barracuda]: Barracuda WAF
 - [ModSec]: Mod-Security
 - [QuickDF]: QuickDefense
 - [Sucuri]: SucuriWAF
 - [Chrome]: Google Chrome
 - [IE]: Internet Explorer
 - [FF]: Mozilla's Gecko rendering engine, used by Firefox/Iceweasel
 - [NS-IE]: Netscape in IE rendering engine mode
 - [NS-G]: Netscape in the Gecko rendering engine mode
 - [Opera]: Opera Browser

---------

This release (v1.8.2) called "The Hiv3!" has added this new features:

 * Ported to: Python3.x
 * Bugfixing
 * Added: Anti-antiXSS Firewall rules (Bypassers provided: SucuriWAF)
 * Modified/Updated GTK+
 * Added Requirements
 * Updated Documentation
 * Updated Website
 * [...]

---------

Media/Contribution:

  - https://xsser.03c8.net/xsser/hive.webm

---------

Code/Packages:

  * [source]:

  - https://code.03c8.net/epsylon/xsser

  * [mirror]:

  - https://github.com/epsylon/xsser

--------

  * [.zip]:

  - https://xsser.03c8.net/xsser/xsser_1.8-2.zip

  * [.tar.gz]:

  - https://xsser.03c8.net/xsser/xsser_1.8-2.tar.gz

-------------------------

Happy "Cross" Hacking! ;-)


Download attachment "signature.asc" of type "application/pgp-signature" (834 bytes)


_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ