[OWASP-Bangalore] Exploit-Me: a suite of Firefox web application security testing tool
k.sumit.us at gmail.com
Thu Dec 18 04:42:44 EST 2008
Not sure, if people on this list are already aware of this tool for firefox.
Please see http://www.securitycompass.com/exploitme.shtml Source code can
also downloaded from their website.
Cross-Site Scripting (XSS) is a common flaw found in todays web
applications. XSS flaws can cause serious damage to a web application.
Detecting XSS vulnerabilities early in the development process will help
protect a web application from unnecessary flaws. XSS-Me is the Exploit-Me
tool used to test for reflected XSS vulnerabilities.
SQL Injection vulnerabilites can cause a lot of damage to a web application.
A malicious user can possibly view records, delete records, drop tables or
gain access to your server. SQL Inject-Me is the Exploit-Me tool used to
test for SQL Injection vulnerabilities.
Access vulnerabilites in an application can allow an attacker to access
resources without being authenticated. Access-Me is the Exploit-Me tool used
to test for Access vulnerabilities.
Phyllis Diller - "I want my children to have all the things I couldn't
afford. Then I want to move in with them."
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the OWASP-Bangalore