DefaceTool is an open-source Java Server Faces(JSF)testing tool for decoding view state and creating view state attack vectors. The tool can be used to create XSS attacks and session and application scope attacks against Apache MyFaces 1.2.8 applications. The tool has been architected to be extensible and can be modified to support other versions of Apache MyFaces and Sun Mojarra.
Check https://www.trustwave.com/spiderLabs-tools.php
We all know that XSS is the most common exploit to be found in any website. However, different forms of XSS have different uses, as i will cover in this
=== Introduction === The BitTorrent protocol identifies peers using a tracker. Each peer announces itself to the tracker via HTTP. Certain parameters in the announce request itself can be altered
PlanetCreator.Net’s Security Team Member Info Freakzz <infofreakzzz(at)gmail.com> has reported another critical XSS vulnerability on http://www.shwephonecard.com registered parent company is “MMM Network L.L.C.†These are some information from Vulneral Site http://www.shwephonecard.com: