tag:blogger.com,1999:blog-20011960.post8050254722698191819..comments2024-01-15T00:25:02.006-08:00Comments on HolisticInfoSecâ„¢: toolsmith: OWASP Xenotix XSS Exploit FrameworkRuss McReehttp://www.blogger.com/profile/05647342839278416757noreply@blogger.comBlogger3125tag:blogger.com,1999:blog-20011960.post-62186166422885941032014-02-14T12:01:00.069-08:002014-02-14T12:01:00.069-08:00By any chance do you know if the OWASP guys have a...By any chance do you know if the OWASP guys have a linux port of this? would be nice to include in kali. Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-20011960.post-85297137932644486072013-11-10T23:32:30.915-08:002013-11-10T23:32:30.915-08:00Hello,
Hoping these will answer your querie...Hello, <br /> Hoping these will answer your queries.<br /><br />1. What are you referring to? The Scanner Module to detect XSS or the Exploitation Module for performing the attack.<br /><br />Detecting XSS on a web application depends on the payloads and the type of filters or WAF's it uses. And when considering the Exploitation Module, you can perform an attack as long as you can xook a victim.<br /><br />2.That depends. Some exploitation modules are operating system or browser dependent. So you could select a module based on your requirements and suitable for the platform or browser.<br /><br />3.Some modules of the Exploitation Framework can work parallel and some cannot. You can check and verify this by opening the xss.js file while you run the Exploitation Framework.Anonymoushttps://www.blogger.com/profile/00284943366652469017noreply@blogger.comtag:blogger.com,1999:blog-20011960.post-37355874042162235122013-11-08T08:50:07.179-08:002013-11-08T08:50:07.179-08:00Hi! I wonder if you know: 1) how much it take to X...Hi! I wonder if you know: 1) how much it take to Xenotix to perform an attack? 2) which of all its exploiting vulnerabilities strategies is the best? 3) can I have more than one exploit proccesses working at the same time?<br /><br />Thanks for your answers.Leandro Audehttps://www.blogger.com/profile/15303254664999739038noreply@blogger.com