HackGh Community Forum

Log in

I forgot my password



Who Is Online?
Guests : 0
Hidden : 0
Registered : 0
Users Online :
Refresh View the whole list

Latest topics
» AIRTEL FREE BROWSING
Yesterday at 1:20 pm by akokono

» Instagram Account hacked
Sun Aug 06, 2017 7:17 pm by saudseidu

» AIRTEL DATA TRANSFER
Sat Aug 05, 2017 7:22 pm by kbasante

» Watch Free 2CTV on any Vodafone line for the month of July
Thu Aug 03, 2017 2:45 pm by WhIPL4$h

» Tricks on How To Download Paid Android Apps For Free
Thu Jul 20, 2017 11:28 am by franknart12

» Psiphon Pro v125 [Subscribed] Cracked APK
Thu Jul 20, 2017 9:29 am by franknart12

» NSS posts over 91,000 service personnel for 2017/2018
Thu Jul 13, 2017 3:00 pm by chinesta10

» Kotoko team bus involved in accident
Thu Jul 13, 2017 1:00 pm by chinesta10

» Airtel Sika kokoo promo
Sun Jul 09, 2017 12:18 pm by willspanner

» My pc constantly gives me black screen and freezes when playing games
Sat Jul 08, 2017 1:10 pm by kbasante

Keywords

christian  7  10  5  1  3  browsing  cheat  keepCalmAndLoveHACKGH4Life  30  2  black  unlocking  Tigo  Unlimited  free  books  2000  busy  6  11  dumsormuststop  8  4  HackGh  9  

Top posting users this month
swiftblack
 
kbasante
 
Sannyz
 
WhIPL4$h
 
saudseidu
 
Awuah33
 
akokono
 



Free counters!
Staff Online
Staff Online
Members1993
Most Online179
Newest Member

You are not connected. Please login or register

 » Computer Tricks And Technology Tips » Pc ( Windows ) Tips & Downloads » 

XSSYA Cross Site Scripting And Vulnerability Confirmation Scanner

View previous topic View next topic Go down  Message [Page 1 of 1]

lacker299

avatar
Active Newbie
XSSYA Cross Site Scripting Scanner & Vulnerability Confirmation written in python scripting language confirm the XSS Vulnerability in two method first work by execute the payload encoded to bypass Web Application Firewall which is the first method request and response if it respond 200 it turn to Method 2 which search that payload decoded in web page HTML code if it confirmed get the last step which is execute document.cookie to get the cookie.
This tool will help you to scan XSS as manually.

XSSYA Features

* Support HTTPS
* After Confirmation (execute payload to get cookies)
* Can be run in (Windows - Linux)
* Identify 3 types of WAF (Mod_Security - WebKnight - F5 BIG IP)
*XSSYA Continue Library of Encoded Payloads To Bypass WAF (Web Application Firewall)
* Support Saving The Web HTML Code Before Executing
the Payload Viewing the Web HTML Code into the Screen or Terminal

Video:


More details
http://www.secure-edf.com/xssya.html

Download
https://github.com/yehia-mamdouh/XSSYA

About The Author:
Yehia Mamdouh, He is Senior Security Researcher & Web Penetration Tester at Defencely
And Cofounder & Instructor of Master Metasploit Course At BlueKizen.
He wrote numerous articles In Web attacks ,PDF forensics and Network attack in Hakin9 Magazine, SecurityKaizen Magazine He also get Acknowledged in the hall of fame of many website like ( Delevoers.com , Sonatype.com, marktplaats.nl, fogcreek.com, opentext.com, pinoyhacknews.com) - See more at: http://blog.hackersonlineclub.com/2014/06/xssya-cross-site-scripting-and.html#sthash.3FNpTA62.dpuf


http://blog.hackersonlineclub.com/2014/06/xssya-cross-site-scripting-and.html

View user profile

View previous topic View next topic Back to top  Message [Page 1 of 1]

Permissions in this forum:
You cannot reply to topics in this forum