I see my pupil that you are now ready to learn the ways of the samourai sword. The Shaolin Warrior’s IDS tiger style is strong but it is no match for the Hackvertor hanzo sword. Observe:-
<@hex>j<@/hex><@dec>a<@/dec>vascrip<@hex>t<@/hex>
<@dec>:<@/dec>ale<@hex>rt(/XSS PUNCH!/)<@/hex>
Which produces a devastating blow:-
javascript:alert(/X
SS PUNCH!/)
I hope you have enjoyed this lesson young one please continue in the ways of [...]
I’ve been busy…real busy on Hackvertor so I thought it might be a good idea to explain the ideas behind it. Please note Hackvertor is currently only tested under Firefox. I may support other browsers in future.
What is it?
It’s many things: a conversion utility, browser hacking platform, targeted fuzzing tool, XSS filter testing tool [...]
I’ve decided to create a video demo of Hackvertor to display the new features I’ve added. The tool is quite powerful now and it is even able to solve my a bit of fun challenge. I didn’t want to waste the bandwidth of my server because of costs so sorry about the adverts displayed in [...]
I’ve been busy catching up with some of the projects I’ve been working on and I’m pleased to announce a new version of Hackvertor, if you don’t know what it is check it out. It’s a useful tool to help with conversions and pen testing server side XSS filters. I decided to write the tool [...]
I was bored again and I fancied creating something useful to easily convert between entities etc. I was inspired by Mario’s excellent encoding tool, which I really like but I wanted to be able to convert to unicode and use multiple strings at once. So I give you….
Hackvertor!! which will allow you to use placeholders [...]