Essential Guide

Browse Sections

Penetration testing
Ethical hacking
Patch management
Risk tutorials
More from the Dummies author on vulnerability assessment
- Kevin Beaver reveals the secrets of vulnerability assessments
Defining the terms

BACKGROUND IMAGE: iSTOCK/GETTY IMAGES

This content is part of the Essential Guide: How to hone an effective vulnerability management program

Problem solve

XSSer demo: How to use open source penetration testing tools

In this video demo, learn how to use XSSer, open source penetration testing tools for detecting various Web application flaws and exploiting cross-site scripting (XSS) vulnerabilities against applications.

Peter Giannoulis, Contributor

Cross-site scripting (XSS) flaws can lead to serious security incidents, so detecting them before black hats do is essential to keeping the enterprise network safe.

In this video demo, learn how to use XSSer, open source penetration testing tools capable of detecting various Web application flaws and cross-site scripting (XSS) vulnerabilities.

Want more demos of free security tools? Visit our screencast page.

About the presenter:
Peter Giannoulis, GSEC, GCIH, GCIA, GCFA, GCFW, GREM, CISSP, is an information security consultant in Toronto, Ontario. He currently maintains The Academy Pro, which provides streaming video for enterprises and consumers on how to configure and troubleshoot many of today's top security products. He also serves as a technical director for GIAC.

This was last published in September 2010

Dig Deeper on Penetration testing, ethical hacking and vulnerability assessments

XSS flaws: Why aren't major websites catching XSS vulnerabilities? Cross-scripting or XSS flaws have been major website vulnerabilities for the past two decades. So why are major sites still falling victim? Expert Michael Cobb explains.

Ebay under fire for inaction over phishing attacks Auction site eBay is under fire after saying it has no plans to disallow active content in listings, despite the risk to users

Twitter suspends TweetDeck over XSS security flaw Twitter has been forced to suspend its Tweetdeck client temporarily to investigate and fix an XSS security flaw

Blogger finds basic security flaw in UK Parliament’s website The UK Parliament's website contained basic flaws that left it vulnerable to hacking, a computer blogger has revealed

XSS vulnerabilities? Time for a visit to the security control library

XSS attacks remain top threat to web applications Cross-site scripting (XSS) attacks remain the top threat to web applications, databases and websites, a study from FireHost reveals

SearchCloudSecurity

Essential Guide

XSSer demo: How to use open source penetration testing tools

In this video demo, learn how to use XSSer, open source penetration testing tools for detecting various Web application flaws and exploiting cross-site scripting (XSS) vulnerabilities against applications.

Dig Deeper on Penetration testing, ethical hacking and vulnerability assessments

Start the conversation

0 comments

Please create a username to comment.

-ADS BY GOOGLE

SearchCloudSecurity

How to implement zero-trust cloud security

AWS Access Analyzer aims to limit S3 bucket exposures

How to evaluate CASB tools for multi-cloud deployments

SearchNetworking

Assess the Wi-Fi 6 features available in Wave 1 and Wave 2

3 networking startups rearchitect routing

A deep dive into the differences between 4G and 5G networks

SearchCIO

Shell, Halliburton, Unibap AB execs share real-world AI strategies

What's the difference between RPA and IPA?

The technological evolution of IT industry leaders: 2000 - 2020

SearchEnterpriseDesktop

Cut through confusion of the digital workspace market

Windows 10 issues top list of most read stories for IT pros

How to fix printer problems after a Windows 10 update

SearchCloudComputing

Review these Azure Service Bus best practices

Instill cloud change management best practices

How much cloud does an IT disaster recovery plan need?

ComputerWeekly.com

Barclays opens large tech operation in India, hiring thousands

Dutch government must facilitate and coordinate a broad eID system

Qualcomm claims world first for 5G mixed reality

Dig Deeper on Penetration testing, ethical hacking and vulnerability assessments

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.