[Owasp-leaders] OWASP Mth3l3m3nt Framework (Update) Cookie Theft ; )

Munir Njiru munir.njiru at owasp.org
Fri Apr 8 08:41:29 UTC 2016


Hi Guys,

Just added a new feature that might prove relevant in event of a stored XSS
attack to the OWASP Mth3l3m3nt Framework
<https://github.com/alienwithin/OWASP-mth3l3m3nt-framework> . Read more
about it here (http://munir.skilledsoft.com/your-hand-is-in-the-cookie-jar/)
<http://munir.skilledsoft.com/your-hand-is-in-the-cookie-jar/> & see it in
action against bWAPP successfully steals cookies & stores them in   a DB
for reuse.

Kind Regards,
Munir Njenga,
OWASP Chapter Leader (Kenya) || Information Security Consultant || Developer
Mob   (KE) +254 (0) 734960670

=============================
Chapter Page: www.owasp.org/index.php/Kenya
Project Site:
http://alienwithin.github.io/OWASP-mth3l3m3nt-framework/
Email: munir.njiru at owasp.org
Facebook: https://www.facebook.com/OWASP.Kenya
Mailing List: https://lists.owasp.org/mailman/listinfo/owasp-Kenya
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20160408/388d7e51/attachment.html>


More information about the OWASP-Leaders mailing list