Luke,
We're taking a different approach towards XSS detection, take a
look at [0] and specially the context stuff
[0]
http://sourceforge.net/apps/trac/w3af/browser/branches/xss/plugins/audit/xss.py
Regards,
On Mon, Sep 17, 2012 at 12:18 AM, luke wrote:
> Does w3af support to check new htm
Does w3af support to check new html5 tag like autofocus
etc. that cause XSS attack ?
On Thu, Sep 13, 2012 at 8:15 AM, Andres Riancho wrote:
> Luke,
>
> I would test it against sites that have CORS headers enabled, some of
> them:
>
> sourceforge.net
> nbcolympics.com
> gazeta.ru
> mamba.r
Luke,
I would test it against sites that have CORS headers enabled, some of them:
sourceforge.net
nbcolympics.com
gazeta.ru
mamba.ru
investopedia.com
And also some negative tests would be nice (test against sites
that don't have that enabled). Finally, also please spend some time
reading
Hi guys
I am testing the w3af modules which design for check html5 vulnerablity ?
but I can not find a good test site ?
does anyone know this kind of website for test ?
--
FIT1-213
Department of Computer Science
Tsinghua University, Beijing, 100084
http://about.me/anakin/bio
--
