Threat level definition
Search:
Home
Bugtraq
Vulnerabilities
Mailing Lists
Jobs
Tools
Vista
News
Infocus
Foundations
Microsoft
Unix
IDS
Incidents
Virus
Pen-Test
Firewalls
Columnists
Mailing Lists
Newsletters
Bugtraq
Focus on IDS
Focus on Linux
Focus on Microsoft
Forensics
Pen-test
Security Basics
Vuln Dev
Vulnerabilities
Jobs
Job Opportunities
Resumes
Job Seekers
Employers
Tools
RSS
News
Vulns
Security Research
Penetration Testing
Back to list
|
Post reply
XSS frameworks
Oct 09 2008 03:47PM
lister lihim org
(2 replies)
Re: XSS frameworks
Oct 10 2008 10:02PM
Nikhil Wagholikar (visitnikhil gmail com)
(1 replies)
Re: XSS frameworks
Oct 12 2008 03:45AM
Adriel Desautels (ad_lists netragard com)
Re: XSS frameworks
Oct 10 2008 02:58AM
natron (natron invisibledenizen org)
(1 replies)
Re: XSS frameworks
Oct 10 2008 09:13AM
Marco Ivaldi (raptor mediaservice net)
On Thu, 9 Oct 2008, natron wrote:
> XSS-Proxy allows you to turn an XSS hole into a proxy to surf from the
> users perspective, with some limitations. Will need modification to
> be useful for anything other than a demo.
>
> http://xss-proxy.sourceforge.net/
See also XSS Shell and XSS Tunnel, at:
http://www.portcullis-security.com/16.php
http://www.portcullis-security.com/uplds/whitepapers/XSSTunnelling.pdf
http://ferruh.mavituna.com/blogs/xsstunnelling-video.zip
BeEF, the Browser Exploitation Framework, may also be useful:
http://www.bindshell.net/tools/beef/
--
Marco Ivaldi, OPST
Red Team Coordinator Data Security Division
@ Mediaservice.net Srl http://mediaservice.net/
------------------------------------------------------------------------
This list is sponsored by: Cenzic
Security Trends Report from Cenzic
Stay Ahead of the Hacker Curve!
Get the latest Q2 2008 Trends Report now
www.cenzic.com/landing/trends-report
------------------------------------------------------------------------
[ reply ]
Privacy Statement
Copyright 2008, SecurityFocus
> XSS-Proxy allows you to turn an XSS hole into a proxy to surf from the
> users perspective, with some limitations. Will need modification to
> be useful for anything other than a demo.
>
> http://xss-proxy.sourceforge.net/
See also XSS Shell and XSS Tunnel, at:
http://www.portcullis-security.com/16.php
http://www.portcullis-security.com/uplds/whitepapers/XSSTunnelling.pdf
http://ferruh.mavituna.com/blogs/xsstunnelling-video.zip
BeEF, the Browser Exploitation Framework, may also be useful:
http://www.bindshell.net/tools/beef/
--
Marco Ivaldi, OPST
Red Team Coordinator Data Security Division
@ Mediaservice.net Srl http://mediaservice.net/
------------------------------------------------------------------------
This list is sponsored by: Cenzic
Security Trends Report from Cenzic
Stay Ahead of the Hacker Curve!
Get the latest Q2 2008 Trends Report now
www.cenzic.com/landing/trends-report
------------------------------------------------------------------------
[ reply ]