XssScanner 1.1 & CSRFScanner 1.0 Released

XssScanner 1.1

XssScanner is a tool designed to help penetration testers find cross site scripting vulnerabilities. It analyzes a webpage to determine which are the payloads that could be used according to the position of the parameter. Then, for each selected payload, XssScanner sends a request using the payload and checks the returned page to find the payload. The major feature of XssScanner is its ability to detect many encodings that do not change the behavior of the payload

Download In Here : XssScanner.tar.gz

CSRFScanner 1.0

CSRFSCanner is a tool designed to identify the forms potentially vulnerable to CSRF/XSRF on a website. This detection is made on forms that are only accessible by logged-in users (cookies are needed to find these forms). The methodology used to identify these forms is the 4-pass reverse diff analysis. Then, in order to determine if a form may be vulnerable, the tool analyzes hidden and password fields to find an anti-CSRF token.

Download In Here : CSRFScanner.tar.gz 

Read More about CSRFSCanner Documentation : http://www.vulnit.com

Advertisements

10 Comments

  1. Yesturdays Arbeit für Morgen – ein Blick auf einige Beispiele…

    Beachtet dieses Beispiel, über gezeigt Arnold Messer an Twitter und stellen Sie sich es vor um zu sein extrem informativ und auch der Punkt…

  2. I like the efforts you have put in this, regards for all the great articles.

  3. … [Trackback]…

    […] Find More Informations here: seclist.wordpress.com/2011/12/01/xssscanner-1-1-csrfscanner-1-0-released/ […]…

  4. Oh my goodness! a amazing post dude. A lot of thanks Even so We are experiencing dilemma with ur rss . Dont know why Can not sign up to it. Could there be anybody obtaining identical rss difficulty? Anyone who knows kindly respond. Thnkx

  5. I am impressed with this web site , rattling I am a big fan .

  6. Check This Out…

    […]Here are some of the sites we recommend for our visitors[…]…

  7. Thanks…

    Thanks for posting this is exactly what I was looking for !!!…

  8. I believe you’ve noted some quite interesting details , appreciate it for the post.

  9. I am impressed with this website , real I am a big fan .

  10. Greetings :-D!


Sorry, the comment form is closed at this time.

Comments RSS