An XML based XSS PoC platform
Eve, Martin Paul (2008) An XML based XSS PoC platform. martineve.com ,
2008-02-02-an-xml-based-xss-poc-platform.markdown - Published Version
Available under License Creative Commons Attribution.
Usually when one wast to illustrate an XSS vulnerability there are two approaches. The first is to show the client the XSS and assume that they know and understand the impact. The second is to write a fully fledged exploit which takes some form of action on the client's server so that they can see the truly devastating impact. I frequently find that the second of these options is the only possible way to draw attention to the problems of XSS, but I have also grown very tired of having to write these from scratch, setting up cookie loggers etc. This post presents a new piece of software to automatically create such a platform.
|School:||Birkbeck Schools and Departments > School of Arts > English and Humanities|
|Research Centre:||Contemporary Literature, Centre for|
|Depositing User:||Martin Paul Eve|
|Date Deposited:||20 Nov 2016 16:37|
|Last Modified:||07 Dec 2016 15:37|
Additional statistics are available via IRStats2.