Scribd Logo
Upload

Welcome to Scribd!

  • Tool Can Be Used

    Uploaded by

    iamranga
    6 views1 page
    The document provides resources for testing cross-site scripting (XSS) vulnerabilities, including URLs with XSS payloads, websites to test with, and tools to automate testing. It recommends the Metasploit penetration testing tool for identifying vulnerable fields in a website and generating a report, and links to the OWASP website for additional XSS and security testing resources.

    Original Description:

    XSS document

    Original Title

    XSS

    Copyright

    © © All Rights Reserved

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    The document provides resources for testing cross-site scripting (XSS) vulnerabilities, including URLs with XSS payloads, websites to test with, and tools to automate testing. It recommends the Metasploit penetration testing tool for identifying vulnerable fields in a website and generating a report, and links to the OWASP website for additional XSS and security testing resources.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    6 views1 page

    Tool Can Be Used

    Uploaded by

    iamranga
    The document provides resources for testing cross-site scripting (XSS) vulnerabilities, including URLs with XSS payloads, websites to test with, and tools to automate testing. It recommends the Metasploit penetration testing tool for identifying vulnerable fields in a website and generating a report, and links to the OWASP website for additional XSS and security testing resources.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 1

    The set of test data for XSS can be found in the below URLS:

    https://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet
    http://ha.ckers.org/xsscalc.html
    http://www.garage4hackers.com/f11/xss-cheat-sheets-364.html

    Few Sites Used for XSS testing:
    http://www.parosproxy.org/
    https://addons.mozilla.org/en-us/firefox/user/security-compass/ - Firefox add on
    https://www.owasp.org/index.php/Appendix_A:_Testing_Tools

    Tool Can be used
    Metasploit - Linux tool - penetration testing tool
    This is one of the prominent tool in the market which is used for security to see the vulnerabilities in a
    website.
    How this tool works?
    This tool will scan the web page and let us know which are the vulnerable fields in the web page. At the
    end of the scan this tools will provide a report on the vulnerable fields.
    Useful Link Reference:
    https://www.owasp.org/index.php/Main_Page
    OVASP Backtrack OS Linux

    You might also like