|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: XSS - how to run script
From: A. R. (r00t
northernfortress.net)
Date: Thu Oct 19 2006 - 15:23:04 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
One of the best repositories of exotic ways to perform XSS (with or
without evasion, with or without script tag) is the XSS cheat sheet:
http://ha.ckers.org/xss.html
hth
--
icesurfer
Tal Argoni wrote:
> Does anyone have any
> techniques/knowledge/examples/ideas/etc
> of how it possible to run script
> without using the <script> tag,
> and without evasion techniques ?
> <script
> src=http://www.www.com/XSS.js></script>
> Thanks allot
> LegendaryZion
>
>
>
> ------------------------------------------------------------------------
> This List Sponsored by: Cenzic
>
> Need to secure your web apps?
> Cenzic Hailstorm finds vulnerabilities fast.
> Click the link to buy it, try it or download Hailstorm for FREE.
> http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
> ------------------------------------------------------------------------
>
>
-------------------------------------------------------------------------
Sponsored by: Watchfire
Watchfire was recently named the worldwide market leader in Web
application security assessment tools by both Gartner and IDC. Download a
free trial of AppScan today and see why more customers choose AppScan
then any other solution.
https://www.watchfire.com/securearea/appscancamp.aspx?id=701500000008YTO
--------------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]