BIROn - Birkbeck Institutional Research Online

    An XML based XSS PoC platform

    Eve, Martin Paul (2008) An XML based XSS PoC platform. eve.gd ,

    [img] Text
    2008-02-02-an-xml-based-xss-poc-platform.markdown - Published Version of Record
    Available under License Creative Commons Attribution.

    Download (4kB)

    Abstract

    Usually when one wast to illustrate an XSS vulnerability there are two approaches. The first is to show the client the XSS and assume that they know and understand the impact. The second is to write a fully fledged exploit which takes some form of action on the client's server so that they can see the truly devastating impact. I frequently find that the second of these options is the only possible way to draw attention to the problems of XSS, but I have also grown very tired of having to write these from scratch, setting up cookie loggers etc. This post presents a new piece of software to automatically create such a platform.

    Metadata

    Item Type: Article
    School: Birkbeck Faculties and Schools > Faculty of Humanities and Social Sciences > School of Creative Arts, Culture and Communication
    Research Centres and Institutes: Contemporary Literature, Centre for
    Depositing User: Martin Eve
    Date Deposited: 20 Nov 2016 16:37
    Last Modified: 24 Aug 2023 13:54
    URI: https://eprints.bbk.ac.uk/id/eprint/16819

    Statistics

    Activity Overview
    6 month trend
    118Downloads
    6 month trend
    367Hits

    Additional statistics are available via IRStats2.

    Archive Staff Only (login required)

    Edit/View Item
    Edit/View Item