I’ve been trying to automate the stuff that I normally do when XSS testing to make it easier than writing custom scripts each time. This worked really well for my fuzzing script which fuzzed random characters embedded into tags to find unusual combinations of characters. I’ve done the same again but this time it inspects [...]
The Spanner
xss —
Category Archives: xss
XCSS
I thought I’d continue the theme of experimenting with XSS and trying different things, I haven’t seen this written about anywhere so here goes. The idea is using CSS as a XSS payload, this can be useful when filters allow some things but make it difficult to construct an attack.
I’ve decided to call it [...]
Unusual XSS vectors
I’ve been working on my Hackvertor script to include XSS fuzzing which isn’t ready yet but I thought you might be interested in a few interesting results I’ve found
First off I’m sure you know you can use XSS in a img object yeah? Well did you know there’s also a image object as [...]
WebFu - Using the Hackvertor hanzo sword
I see my pupil that you are now ready to learn the ways of the samourai sword. The Shaolin Warrior’s IDS tiger style is strong but it is no match for the Hackvertor hanzo sword. Observe:-
<@hex>j<@/hex><@dec>a<@/dec>vascrip<@hex>t<@/hex>
<@dec>:<@/dec>ale<@hex>rt(/XSS PUNCH!/)<@/hex>
Which produces a devastating blow:-
javascript:alert(/X
SS PUNCH!/)
I hope you have enjoyed this lesson young one please continue in the ways of [...]
WebFu Dojo - XSS self defence
Welcome my young apprentice so you want to learn how to defend yourself from the onslaught of XSS ninjas do you? Well in my first Dojo lesson I shall show you techniques of the shaolin crane style to defend yourself from the XSS punch.
XSS roundhouse
Use the roundhouse wisely my young master and always proceed with [...]
Hackvertor explained
I’ve been busy…real busy on Hackvertor so I thought it might be a good idea to explain the ideas behind it. Please note Hackvertor is currently only tested under Firefox. I may support other browsers in future.
What is it?
It’s many things: a conversion utility, browser hacking platform, targeted fuzzing tool, XSS filter testing tool [...]
New version of Hackvertor released
I’ve been busy catching up with some of the projects I’ve been working on and I’m pleased to announce a new version of Hackvertor, if you don’t know what it is check it out. It’s a useful tool to help with conversions and pen testing server side XSS filters. I decided to write the tool [...]
Injecting the script tag into XML
Firefox is now the browser I like hacking, there’s just so much stuff it can do. I simply don’t have enough time to explore everything, but what I have found was some very interesting XML behavior. I was helping Ronald a while back with a Firefox chrome security flaw and we discussed on slackers that [...]
XSS attacks a practical example
I’ve been talking with Hackathology and he was having trouble understand the context of certain XSS attacks, so I decided to write him a quick PHP document which creates vulnerable variables and examples. The document has links which perform the injections on itself, I didn’t have IE handy to test so forgive me if the [...]
Hackvertor
I was bored again and I fancied creating something useful to easily convert between entities etc. I was inspired by Mario’s excellent encoding tool, which I really like but I wanted to be able to convert to unicode and use multiple strings at once. So I give you….
Hackvertor!! which will allow you to use placeholders [...]