Thursday, February 24, 2011

XSSer v1.5 beta Released

Cross Site "Scripter" is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based aplications.It contains several options to try to bypass certain filters, and various special techniques of code injection.

Added GTK option + Heuristic test + HTTP Response Splitting (ak.a Induced attack!) + Do(Server) injection + Final code (added DCP & DOM injections) + Update option + Code clean + Bugfixing + New options menu + More advanced statistics system + Updated dorkerers list.
GTK: Intuitive navigation + Wizard helper ("build your pentesting answering some questions") + Expert visor (with target(s) geolocation included + Documentation.
Created XSSer package (v1.5) for Ubuntu/Debian based systems.


Video demo:

No comments: