Hi,
don't have any recommendations specifically for CSS attacks at hand,
but you may want to hava a look at WebGoat and WebScarab avai-
lable from here:
http://www.owasp.org/software/webgoat.html
WebGoat teaches common Java web security pitfalls and has been
quite successfuly used here for internal developer training. WebScarab
is a proxy that enables one to change nearly everything in the request
before it is being sent to the server, without having to change the
HTML each time. Quite useful and enlightening :-)
HTH,
-- Christian.
Deepa Khetan schrieb:
Hi,
I am working for the Security of my site. Read about Cross-Site-Scripting
attacks being most common. Can anyone help me regarding what can be the best
freeware tool to test a CSS vulnerability of my site. Also, any suggestions
on how CSS attack can be avoided? We are using Struts framework.
Any information/suggestion is most welcome.
Deepa
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
