Go Back   Velocity Reviews > Newsgroups > Computer Security
XSS XSS
User Name
Password
Register FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply

Computer Security - XSS
 
Thread Tools Search this Thread
Old 06-22-2005, 12:43 AM   #1
Default XSS


Hi,

Is there a good windows based XSS detection tool for web application
testing?

Thanks



Clementine
  Reply With Quote
Old 06-25-2005, 12:58 PM   #2
Darren Campbell
 
Posts: n/a
Default Re: XSS
Not sure how you expect an application to check for XSS...


Some tips:

Check all POST and GET variable for unacceptable characters.

If using PHP, some variables can get through if you allow globals, so
turn them off.

Deny ALL first and then only accept allowable characters.

Regards,

Darren






Clementine wrote:
> Hi,
>
> Is there a good windows based XSS detection tool for web application
> testing?
>
> Thanks
>


Darren Campbell
  Reply With Quote
Reply

« Running a computer as "user" vs "administrator" prevent adware from being installed | Can't Turn Off NAV Outgoing E-mail Scanning »

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


Contact Us - - Archive - Privacy Statement - Top


SEO by vBSEO 3.3.2 ©2009, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46