Snuck - Automatic XSS filter bypass
Friday, December 21, 2012
0
comments
Snuk is an automatic tool that is used to bypass XSS filters. This this tool is used to find XSS vulnerabilities in web applications. Snuck is based on the Selenium project and supports Mozilla Firefox, Google Chrome and Internet Explorer.
This tool is different from typical web security scanners. It tries to break XSS filters by specializing the injections. This is is faster and success rate is high.
This tool easily fines DOM based XSS that is hard to find by normal web scanners. Since many steps could be involved before an XSS filter is "activated", an XML configuration file should be filled in order to make snuck aware of the steps it needs to perform with respect to the tested web application.
Download and Home Page
Tutorials
Categories:
XSS
0 comments:
Post a Comment