Xss

XSS Shell script is a powerful XSS backdoor. XSS Shell allows interactively getting control over a Cross-site Scripting (XSS) vulnerability in a web application. It demonstrates the real power and damage of Cross-site Scripting attacks. Whats New in This Release: Regenerating Pages - This...

XSS-Me is the Exploit-Me tool used to test for reflected Cross-Site Scripting (XSS). It does NOT currently test for stored XSS.rnrnThe tool works by submitting your HTML forms and substituting the form value with strings that are representative of an XSS attack.rnrnIf the resulting HTML page sets...

Springenwerk project is a Cross Site Scripting (XSS) security scanner, written in Python. This is my first project using Python, so please feel free to tell me about all the places in the code where I screwed up. This is open source software. Please help make this THE open source XSS scanner by...


Platforms: *nix

SafeHTML is an anti-XSS HTML parser, written in PHP. This parser strips down all potentially dangerous content within HTML: - opening tag without its closing tag - closing tag without its opening tag - any of these tags: “base”, “basefont”, “head”,...


Platforms: *nix

It will remove malicious code (XSS attacks) and produce valid well-formed XHTML code.InstallationUnpack and upload it to the /wp-content/plugins/ directory.Activate the plugin through the 'Plugins' menu in WordPress. Key features "HTML Purified": - Configurable KSES or HTML Purifier -...


Platforms: Windows, Mac, *nix, PHP, BSD Solaris

DeXSS project provides a SAX2 Parser to help protect against Cross-site scripting (XSS) attacks. DeXSS uses TagSoup to parse potentially malformed input, followed by a SAX2 filter pipeline to remove JavaScript from HTML. You can use the DeXSS parser in place of your existing SAX2 parser, or...


Platforms: *nix

The Microsoft Anti-Cross Site Scripting Library (Anti-XSS) was designed to be an encoding library for developers protect their ASP.NET web-based applications from XSS attacks. It differs from most encoding libraries in that it uses the white-listing technique -- sometimes referred to as the...


Platforms: Windows, 2003, Windows Vista, XPX64, 2008, 7

Audit your website security with Acunetix Web Vulnerability Scanner As many as 70% of web sites have vulnerabilities that could lead to the theft of sensitive corporate data such as credit card information and customer lists. Hackers are concentrating their efforts on web-based applications -...


Platforms: Windows

Spiders a website and logs many common problems including missing resources (HTTP 400), server errors (HTTP 500), slow pages, looping redirects, missing meta tags, duplicate content and potential SQL injection/cross-site scripting (XSS) vulnerabilities. Various informational modules are also...


Platforms: Windows, Mac, Linux

Java-based Open Source WAF (Web Application Firewall) to include inside a web application in order to protect it against attacks like SQL Injection, Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), Parameter Manipulation and many more.


Platforms: Windows, Mac, Linux

XMLSlideShow (XSS) is an XHTML based slideshow and presentation tool. Designed for Firefox > 1.5 XSS provides many features, that are known and valued in other presentation software.


Platforms: Windows, Mac, Linux

This module can protect four kind of attacks like: - DoS - SQL Injection - XSS - System global variable pollutionXoops Protector defends you XOOPS from these attacks, and it records into its log.


Platforms: Windows, *nix, PHP, BSD

Protects your website from ALL XSS & SQL Injection hacking attempts. Protects wp-config.php with .htaccess protection. One-click .htaccess security file activation. One-click website under maintenance mode activation (HTTP 503). Hide your WordPress version - WP Generator META tag removed, Check...


Platforms: PHP

Automated XSS scan of your Drupal website through Simpletest.This project is based on SimpleTest library which is developed to execute unit and browser testing of PHP code. SimpleTest is a framework for enabling automated code checking and has a browser component available which can simulate...


Platforms: PHP

Yokoso! is a project focused on creating fingerprinting code that is deliverable through some form of client attack. This can be used during penetration tests that combine network and web applications. One of the most common questions we hear is "so what can you do with XSS?" and we hope that...


Platforms: Mac

chameleon.html is a free Python based tool that implements a template compiler for dynamic HTML documents. In particular, chameleon.html supports the XSS rule language which is used to associate elements with dynamic content. The XSS rule language uses a CSS-compliant syntax to let you match...


Platforms: Mac

N-Stalker Web Application Security Scanner 2006 state-of-art security assessment tool developed by N-Stalker. Incorporates well-known N-Stealth HTTP Security Scanner and 35,000 web attack signature database. Its patent-pending self-owned technology allows to scan web applications against SQL XSS...


Platforms: Windows

OpenCms from Alkacon Software is a professional, easy to use website content management system. OpenCms helps content managers worldwide to create and maintain beautiful websites fast and efficiently. The fully browser based user interface features configurable editors for structured content...


Platforms: Not Applicable

HTML::Detoxifier is a practical module to strip harmful HTML. SYNOPSIS use HTML::Detoxifier qw ; my $clean_html = detoxify $html; my $cleaner_html = detoxify($html, disallow => [qw(dynamic images document)]); my $stripped_html = detoxify($html, disallow => [qw(everything)]);...


Platforms: *nix

Secure Login provides a login extension similar to Operas Wand login. It uses the built-in password manager, but deactivates the prefilling of login forms. Instead, you are now able to login with one click or a keyboard shortcut (ALT+N). Just add the Secure Login toolbar button to your...


Platforms: *nix