09 November 2010 | 8,805 views

XSSer v1.0 – Cross Site Scripter Framework

Don't let a Dragon into your website!

XSSer is an open source penetration testing tool that automates the process of detecting and exploiting XSS injections against different applications.

It contains several options to try to bypass certain filters, and various special techniques of code injection.

New Features

  • Added “final remote injections” option
  • Cross Flash Attack!
  • Cross Frame Scripting
  • Data Control Protocol Injections
  • Base64 (rfc2397) PoC
  • OnMouseMove PoC
  • Browser launcher
  • New options menu
  • Pre-check system
  • Crawler spidering clones
  • More advanced statistics system
  • “Mana” ouput results

You can download XSSer v1.0 here:

xsser-1.0.tar.gz

Or read more here.

Advertisements



Recent in Exploits/Vulnerabilities:
- Rowhammer – DDR3 Exploit – What You Need To Know
- Santoku Linux – Mobile Forensics, Malware Analysis, and App Security Testing LiveCD
- Google Expands Pwnium Year Round With Infinite Bounty

Related Posts:
- XSSYA – Cross Site Scripting (XSS) Scanner Tool
- HDIV – Java Web Application Security Framework
- Durzosploit v0.1 – JavaScript Exploit Generation Framework

Most Read in Exploits/Vulnerabilities:
- Learn to use Metasploit – Tutorials, Docs & Videos - 229,609 views
- AJAX: Is your application secure enough? - 119,413 views
- eEye Launches 0-Day Exploit Tracker - 85,201 views

Low-cost VPS Hosting

Comments are closed.