Hackvertor update & feature requests

Wednesday, 5 December 2007

New update

I’ve updated Hackvertor again, which allows HMAC hashing, SHA2 hashing support, new line removal and javascript evaluation within tags. A good example of the new features would be the following input:-

<@sha2><@js2str>str='hello';for(i=0;i<10;i++) str += 'o'<@/js2str><@/sha2>

The above creates the string “hellooooooooooo” in javascript and hashes the result with sha2.

I’ve started work on a formatcode tag which I decided to include because I know people use Hackvertor to convert encoded javascript attacks. It doesn’t do much at the moment but it will format code nicely when it’s finished.

Feature requests

I’ve asked on the sla.ckers forum for feature requests but I’d thought I’d do it here too. I’m interested to know how you’re all using the tool so I can get an idea on how to improve it for you. When I originally designed it, I thought of it would be an all-in-one conversation tool but it’s expanded into a more multipurpose security tool really. I plan to add SQL injection string building alongside the XSS tags and eventually expand the tool into a web service were we can exchange tags etc.

So what is it missing? Leave your feedback here.

Hackvertor

The entry 'Hackvertor update & feature requests' was posted on December 5th, 2007 at 11:09 am and is filed under hackvertor, javascript, Security. You can follow any responses to this entry through the RSS 2.0 feed. Both comments and pings are currently closed.

Comments are closed :( too much spam. If you want to contact me about any article please email or tweet me.

«
»