Discussion in 'Computer Security' started by Clementine, Jun 22, 2005.
Is there a good windows based XSS detection tool for web application
Not sure how you expect an application to check for XSS...
Check all POST and GET variable for unacceptable characters.
If using PHP, some variables can get through if you allow globals, so
turn them off.
Deny ALL first and then only accept allowable characters.
> Is there a good windows based XSS detection tool for web application
Separate names with a comma.