Lifedork

Firstly, if you have no idea what xss is all about , please read xss injection tutorial to understand the way xss works. In this post I’ll list some xss scanners which are available to be used to pentest your own webs. Instead of online xss scanner that I mentioned on my previous post , I’ll introduce you to some other scanner xss.

Acunetix

* Acunetix WVS automatically checks your web applications for XSS, SQL Injection & other vulnerabilities.
* Firewalls, SSL and locked-down servers are futile against web application hacking.
* Acunetix checks your web applications for coding errors that result in Cross Site Scripting vulnerabilities.
* Acunetix also checks for other vulnerabilities in popular web applications such as Joomla, PHPbb.
* Acunetix identifies files with XSS vulnerabilities allowing you to fix them BEFORE the hacker finds them!

URL : http://www.acunetix.com/cross-site-scripting/scanner.htm

Pixy

Pixy is a Java program that performs automatic scans of PHP 4 source code, aimed at the detection of XSS and SQL injection vulnerabilities. Pixy takes a PHP program as input, and creates a report that lists possible vulnerable points in the program, together with additional information for understanding the vulnerability.

URL : http://pixybox.seclab.tuwien.ac.at/pixy/download.php

GNUCITIZEN Javascript xss scanner

Once you open the POC application there are two options that are given to you. The first one is to use the XSS scanner together with the Yahoo Site Explorer Spider. The spider is restricted in terms of depth and number of results per page. You can spider only the top 50 results. Again, this is done on purpose. Concurrently with the spider, the scanner will test for the XSS issues and deliver the result via a callback mechanism.

URL : http://www.gnucitizen.org/blog/javascript-xss-scanner/

D3hydr8 Google XSS scanner

XSS Scanner that can find hosts using a google query or search one site.

URL : http://darkcode.ath.cx/scanners/XSSscan.py

Related articles :

• PHP Security: Fortifying Your Website- Power Tips, Tools & How to’s (noupe.com)
• Retrieving Data on a SQL Anywhere Server Using AJAX (java.sys-con.com)
• Php & Web Security – PHPXperts 2009 (slideshare.net)

Recenly search

Incoming search terms for the article:

xss scanner,  google xss scanner,  xsss backtrack,  xss scanner in php,  xss dork,  xss backtrack,  scanner XSS,  pixy xss,  kill Edan trainer download,  acunetix tutorial,  google xss query,  download free RFI BUG SCANNER,  dork py darkcode,  disgusting hidden message in toy story 3 yahoo,  bugs dork,  bug scanner in php source,  backtrack xss scan,  backtrack xss,  xxs scanner,  
Popular Today naruto shippuden 170 videolog,  cat physics walkthrough,  naruto shippuden 168 videolog,  facebook spy,  backtrack 3,  shy engine,  vtunnel,  BackTrack tutorial,  backtrack 3 tutorial,  facebook photo viewer,  See The Shocking Hidden Message In The Google Logo that GOOGLE Does NOT Want You To Know About!,  how to view private myspace pictures,  my empire hack,  view private myspace pictures,  SHOCKING: RUDE HIDDEN MESSAGE in Toy Story 3!,  facebook keylogger,  HIDDEN MESSAGE IN GOOGLE LOGO,  Terri Moulton Horman,  rapidleech,  brute force facebook,   Computer Security Stuff on eBay!
Electronics stuffs on ebay

Xss scanner is posted on July 22nd, 2009 by admin. This post is filed under: Sectools, Security, !sql scan dorks, "sql dork scanner", "sql google scanner" "php", access sql dork, acunetix tutorial, acunetix wvs v7 rc1 download, arek matrix, backtrack xss, backtrack xss scan, bug scanner in php source, bugs dork, coldfusion dork, coldfusion dorks, Cross-site scripting, custom dorks list, descarga dork scanner, dork backdoor, dork list sql baru 2010, dork scan, dork scanner online, dork scanner priv8, dork.py darkcode, dorks scanner, dorks vulnerability scanner, download free rfi bug scanner, download vopcrew ijo scanner v1.2, free hacking rfi bug dork list, goldhaxor md5, google dork, google dork scanner, google dork tool, google dorks for coldfusion, google dorks for finding exploits, google dorks list, google dorks scanner, google scanner sql, google xss query, google xss scanner, Java, JavaScript, kill edan trainer download, linux dork scanner, mohackz sql tutorial -rapidshare, netsparkers professional, online dork scanner, online sql dork scanner, PHP, rfi scanner para ubuntu, Security, serect rfi bug dork #2, sql google dork scanner, sql google scanner, SQL Injection, sql injection dork scanner, sql injection scanner coded by bako?, sql injection scanner google dork, sql injection scanner php, sql injection scanner source php, sqlgoogle scanner, sqlgoogle script, sqli dork scanner php, sqli google scanner, sql_dork_scanner, tutorial cheat kill edan trainer, Web application, WWW, xss backtrack, xss dork, xss google dork, xss scanner, xxs scanner .