XSS

Discussion in 'Computer Security' started by Clementine, Jun 22, 2005.

  1. Clementine

    Clementine Guest

    Hi,

    Is there a good windows based XSS detection tool for web application
    testing?

    Thanks
    Clementine, Jun 22, 2005
    #1
    1. Advertising

  2. Not sure how you expect an application to check for XSS...


    Some tips:

    Check all POST and GET variable for unacceptable characters.

    If using PHP, some variables can get through if you allow globals, so
    turn them off.

    Deny ALL first and then only accept allowable characters.

    Regards,

    Darren






    Clementine wrote:
    > Hi,
    >
    > Is there a good windows based XSS detection tool for web application
    > testing?
    >
    > Thanks
    >
    Darren Campbell, Jun 25, 2005
    #2
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.

Share This Page