Presentation is loading. Please wait.

Presentation is loading. Please wait.

OWASP Xenotix XSS Exploit Framework

Published byOphelia Bradford Modified over 9 years ago

Similar presentations

Presentation on theme: "OWASP Xenotix XSS Exploit Framework"— Presentation transcript:

1 OWASP Xenotix XSS Exploit Framework
Gavriliță Cristian Cebanu Ghenadie

2 OWASP Top

3 XSS Some years back Now…
Low Ranked… It wasn’t considered a great vulnerability SQLi, LFI, RFI, RSI… were considered real vulnerabilities XSS was considered just <script>alert(“XSS”)</script> Only possibilities are Phishing or Cookie stealing Now… Tools like Beef, XSS Tunnel , Xssf, Shell of Future changed the scene People started understanding the real threats of XSS Some of them are XSS Tunneling, Client side code injection, DoS and DDos, Cookies Stealing, Malicious Drive-by Downloads, Phishing, Defacing

4 What is OWASP Xenotix XSS Exploit Framework
Xenotix XSS Exploit Framework is a penetration testing tool It can be used to detect and exploit XSS vulnerabilities It is divided into an XSS Scanner and an Exploitation Framework Has support for Gecko, Trident and Webkit

5 OWASP Xenotix XSS Exploit Framework
Version 1 : 8 Semptember 2013 Ajin Abraham runs a successful Defcon Chapter at Kerala DEFCON Bangalore-India, ClubHack , nullcon Goa, OWASP AppSec AsiaPac 2013, BlackHat Europe 2013 Arsenal , Hackmiami 2013 and Confidence 2013, OHM 2013, BlackHat USA 2013 Arsenal

6 Versions: 4.5 JavaScript Beautifier Pause and Resume support for Scan
Jump to Payload Cookie Support for POST Request Cookie Support and Custom Headers for Header Scanner Added TRACE method Support Improved Interface Better Proxy Support WAF Fingerprinting Load Files <exploitation module> Hash Calculator Hash Detector

7 Versions: 5 Xenotix Scripting Engine Xenotix API V4.5 Bug Fixes
GET Network IP (Information Gathering) QR Code Generator for Xenotix xook HTML5 WebCam Screenshot(Exploitation Module) HTML5 Get Page Screenshot (Exploitation Module) Find Feature in View Source. Improved Payload Count to 1630 Name Changes

8 Versions: 6 Intelli Fuzzer IP to Location Context Based Fuzzer
IP to GeoLocation Blind Fuzzer IP Hinting HTA Network Configuration Download Spoofer HTA Drive-By HTML5 Geolocation API HTA Drive-By Reverse Shell Reverse TCP Shell Addon (Linux) JSFuck 6 Char Encoder OAuth 1.0a Request Scanner jjencode Encoder 4800+ Payloads aaencode Encoder SSL Error Fixed

9 Unique features Zero False Positive Triple Browser Engine Support
2nd Largest XSS Payloads Xenotix API Python Scripting Engine with Triple Browser Engine Rendering and XSS Payload Support Top 5th Security Tool of 2013 Toolsmith Tool of the Month 2013

10 Scanner Module Manual XSS Scanner Automode XSS Scanner
MultiParameter XSS Scanner XSS Fuzzer XSS Filter Bypassing XSS Payload Encoder XSS Payloads

11 Exploitation Module XSS Kelogger XSS Executable Drive-by Download
XSS Reverse Shell XSS HTML5 DDoSer (CORS + WebSocket) XSS Cookie Thief

12 Burp Suite An intercepting Proxy, which lets you inspect and modify traffic between your browser and the target application. An application-aware Spider, for crawling content and functionality. An advanced web application Scanner, for automating the detection of numerous types of vulnerability. An Intruder tool, for performing powerful customized attacks to find and exploit unusual vulnerabilities. A Repeater tool, for manipulating and resending individual requests. A Sequencer tool, for testing the randomness of session tokens. The ability to save your work and resume working later. Extensibility, allowing you to easily write your own plugins, to perform complex and highly customized tasks within Burp.

13 The Zed Attack Proxy (ZAP)
The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. It is designed to be used by people with a wide range of security experience and as such is ideal for developers and functional testers who are new to penetration testing. ZAP provides automated scanners as well as a set of tools that allow you to find security vulnerabilities manually.

14 Conclusions Xenotix XSS Exploit Framework can be used by Security Analysts for XSS hunting Most commercial tools available are either XSS Scanners or XSS Exploitation tools. Xenotix is the first of it’s kind to act as both, a Vulnerability scanner as well as an Exploitation framework and it’s completely free Tutorials: cS9fMj1SOTKo8lgm-9XGNzPT

Download ppt "OWASP Xenotix XSS Exploit Framework"

Similar presentations

The OWASP Foundation Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under.

The OWASP Foundation Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under.
Chapter 17: WEB COMPONENTS

Chapter 17: WEB COMPONENTS
HI-TEC 2011 SQL Injection. Client’s Browser HTTP or HTTPS Web Server Apache or IIS HTML Forms CGI Scripts Database SQL Server or Oracle or MySQL ODBC.

HI-TEC 2011 SQL Injection. Client’s Browser HTTP or HTTPS Web Server Apache or IIS HTML Forms CGI Scripts Database SQL Server or Oracle or MySQL ODBC.
The OWASP Foundation Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under.

The OWASP Foundation Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under.
Hands on Demonstration for Testing Security in Web Applications

Hands on Demonstration for Testing Security in Web Applications
Creating Stronger, Safer, Web Facing Code JPL IT Security Mary Rivera June 17, 2011.

Creating Stronger, Safer, Web Facing Code JPL IT Security Mary Rivera June 17, 2011.
Hands-On Ethical Hacking and Network Defense Second Edition Chapter 5 Port Scanning.

Hands-On Ethical Hacking and Network Defense Second Edition Chapter 5 Port Scanning.
Common Exploits Aaron Cure Cypress Data Defense. SQL Injection.

Common Exploits Aaron Cure Cypress Data Defense. SQL Injection.
APPLICATION VULNERABILITY ASSESSMENTS REVISITED COMPUTING AND COMMUNICATIONS www.mun.ca Jared Perry GSEC, GWAPT, GCWN Application testing at Memorial University.

APPLICATION VULNERABILITY ASSESSMENTS REVISITED COMPUTING AND COMMUNICATIONS Jared Perry GSEC, GWAPT, GCWN Application testing at Memorial University.
Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.

Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.
WebGoat & WebScarab “What is computer security for $1000 Alex?”

WebGoat & WebScarab “What is computer security for $1000 Alex?”
The OWASP Foundation Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under.

The OWASP Foundation Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under.
Automating Bespoke Attack Ruei-Jiun Chapter 13. Outline Uses of bespoke automation ◦ Enumerating identifiers ◦ Harvesting data ◦ Web application fuzzing.

Automating Bespoke Attack Ruei-Jiun Chapter 13. Outline Uses of bespoke automation ◦ Enumerating identifiers ◦ Harvesting data ◦ Web application fuzzing.
Blackbox Reversing of XSS Filters Alexander Sotirov ekoparty 2008.

Blackbox Reversing of XSS Filters Alexander Sotirov ekoparty 2008.
IDAsec copyright - all rights reserved1 Web Vulnerabilities in the real world.

IDAsec copyright - all rights reserved1 Web Vulnerabilities in the real world.
The OWASP Foundation Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under.

The OWASP Foundation Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under.
Browser Exploitation Framework (BeEF) Lab

Browser Exploitation Framework (BeEF) Lab
Leveraging User Interactions for In-Depth Testing of Web Application Sean McAllister Secure System Lab, Technical University Vienna, Austria Engin Kirda.

Leveraging User Interactions for In-Depth Testing of Web Application Sean McAllister Secure System Lab, Technical University Vienna, Austria Engin Kirda.
 Chirita Ionel  Application Security  OWASP Chapter board member.

 Chirita Ionel  Application Security  OWASP Chapter board member.
Presenter Deddie Tjahjono.  Introduction  Website Application Layer  Why Web Application Security  Web Apps Security Scanner  About  Feature  How.

Presenter Deddie Tjahjono.  Introduction  Website Application Layer  Why Web Application Security  Web Apps Security Scanner  About  Feature  How.

Similar presentations

Ads by Google