{"id":3884,"date":"2015-03-21T02:42:41","date_gmt":"2015-03-20T18:42:41","guid":{"rendered":"https:\/\/www.darknet.org.uk\/?p=3884"},"modified":"2017-06-26T19:31:58","modified_gmt":"2017-06-26T11:31:58","slug":"xssya-v2-0-released-xss-vulnerability-confirmation-tool","status":"publish","type":"post","link":"https:\/\/www.darknet.org.uk\/2015\/03\/xssya-v2-0-released-xss-vulnerability-confirmation-tool\/","title":{"rendered":"XSSYA v2.0 Released &#8211; XSS Vulnerability Confirmation Tool"},"content":{"rendered":"<p>We first published about <a href=\"https:\/\/www.darknet.org.uk\/2014\/07\/xssya-cross-site-scripting-xss-scanner-tool\/\">XSSYA back in 2014<\/a>, and it seemed to be pretty popular, there&#8217;s not a whole lot of tools in the XSS (Cross Site Scripting) space.<\/p>\n<p>For those who are unfamiliar, XSSYA used to be Cross Site Scripting aka XSS Vulnerability Scanner &#038; Confirmation tool &#8211; the scanning portion has been removed to reduce false positives and it now focuses on XSS Vulnerability Confirmation.<\/p>\n<p>It uses two main methods:<\/p>\n<ul>\n<li>Method number 1 for Confirmation Request and Response<\/li>\n<li>Method number 2 for Confirmation Execute encoded payload and search for the same payload in web HTML code but decoded<\/li>\n<\/ul>\n<p align=\"center\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/www.darknet.org.uk\/wp-content\/uploads\/2015\/03\/XSSYA-v2.0-Released-XSS-Vulnerability-Confirmation-Tool.jpg\" alt=\"XSSYA v2.0 Released - XSS Vulnerability Confirmation Tool\" width=\"500\" height=\"326\" class=\"aligncenter size-full wp-image-4579\" \/><\/p>\n<p>We have written about a couple of XSS related tools before:<\/p>\n<p>&#8211; <a href=\"https:\/\/www.darknet.org.uk\/2008\/10\/xss-proxy-cross-site-scripting-attack-tool\/\">XSS-Proxy \u2013 Cross Site Scripting Attack Tool<\/a><br \/>\n&#8211; <a href=\"https:\/\/www.darknet.org.uk\/2006\/12\/xss-shell-v039-cross-site-scripting-backdoor-tool\/\">XSS Shell v0.3.9 \u2013 Cross Site Scripting Backdoor Tool<\/a><\/p>\n<script async src=\"https:\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-3033787195489589\"\r\n     crossorigin=\"anonymous\"><\/script>\r\n<!-- Darknet Responsive Post Ad Links [previously link ad unit] -->\r\n<ins class=\"adsbygoogle\"\r\n     style=\"display:block\"\r\n     data-ad-client=\"ca-pub-3033787195489589\"\r\n     data-ad-slot=\"5456620019\"\r\n     data-ad-format=\"auto\"><\/ins>\r\n<script>\r\n     (adsbygoogle = window.adsbygoogle || []).push({});\r\n<\/script>\n<h3>Features<\/h3>\n<ul>\n<li>Supports HTTPS<\/li>\n<li>After Confirmation (execute payload to get cookies)<\/li>\n<li>Identify 3 Types of WAF (<a href=\"https:\/\/www.darknet.org.uk\/2015\/11\/modsecurity-open-source-web-application-firewall\/\">Mod_Security<\/a> &#8211; WebKnight &#8211; F5 BIG IP)<\/li>\n<li>Can be run in Windows &#038; Linux<\/li>\n<li>XSSYA has a library of encoded payloads To bypass WAF (Web Application Firewall)<\/li>\n<li>Supports saving the HTML before executing the payload<\/li>\n<\/ul>\n<h3>What&#8217;s new in v2.0?<\/h3>\n<ul>\n<li>More payloads; library contains 41 payloads to enhance detection level<\/li>\n<li>XSS scanner is now removed from XSSYA to reduce false positive<\/li>\n<li>URLs to be tested used to not allow any character at the end of the URL except (\/ &#8211; = -?) but now this limitation has been removed<\/li>\n<li>HTML5 Payloads<\/li>\n<li>IP Address Conversion (Hex, DWORD, Octal etc)<\/li>\n<li>XST (Cross Site Tracing) Detection<\/li>\n<\/ul>\n<p>You can download XSSYA here:<\/p>\n<p><a href=\"https:\/\/github.com\/yehia-mamdouh\/XSSYA-V-2.0\/archive\/master.zip\">master.zip<\/a><\/p>\n<p>Or read more <a href=\"http:\/\/labs.dts-solution.com\/xssya-forget-the-browser-for-xss-by-yehia-mamdouh\/\">here<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>We first published about XSSYA back in 2014, and it seemed to be pretty popular, there&#8217;s not a whole lot of tools in the XSS (Cross Site Scripting) space. For those who are unfamiliar, XSSYA used to be Cross Site Scripting aka XSS Vulnerability Scanner &#038; Confirmation tool &#8211; the scanning portion has been removed [&hellip;]<\/p>\n","protected":false},"author":25,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_seopress_robots_primary_cat":"","_seopress_titles_title":"","_seopress_titles_desc":"XSSYA is a Cross Site Scripting AKA XSS Vulnerability Confirmation tool, which supports HTTPS, WAF identification, has encoded payloads etc.","_seopress_robots_index":"","_genesis_hide_title":false,"_genesis_hide_breadcrumbs":false,"_genesis_hide_singular_image":false,"_genesis_hide_footer_widgets":false,"_genesis_custom_body_class":"","_genesis_custom_post_class":"","_genesis_layout":"","footnotes":""},"categories":[9,15],"tags":[3376,907,770,4826,3374,4828],"featured_image_src":null,"featured_image_src_square":null,"author_info":{"display_name":"Darknet","author_link":"https:\/\/www.darknet.org.uk\/author\/darknet\/"},"_links":{"self":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts\/3884"}],"collection":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/users\/25"}],"replies":[{"embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/comments?post=3884"}],"version-history":[{"count":0,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts\/3884\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/media?parent=3884"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/categories?post=3884"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/tags?post=3884"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}