This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "OWASP XSSER"

From OWASP

Jump to: navigation, search

Revision as of 15:52, 2 May 2016

Share this:

OWASP XSSer Project Web application vulnerability scanner / Security auditor
Project Name	XSSer: "The Cross Site Scripting Framework"
Short Project Description	Cross Site "Scripter" is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications. It contains several options to try to bypass certain filters, and various special techniques of code injection.
Key Project Information	Project Leader psy	Mailing List Subscribe - Use	License GNU GPLv3	Project Type Pentesting tool	Support NLNet Awards OWASP tool

Last Package	Main Links	Related Documentation
"(v1.7-1b) "ZiKA-47 Swarm!"	Official site Code Releases	Paper(2009): 'XSS for fun and profit': English - Spanish

1 Current Version
2 How it works
3 Installation
4 Options
5 Contact

Current Version

XSSer v1.7-1b ("The Mosquito: ZiKA-47 Swarm")

Download (.tar.gz) source code: XSSer_v1.7-1.tar.gz
Download (.zip) source code: XSSer_v1.7-1.zip
Ubuntu/Debian package: XSSer-1.7-1_all.deb
Or update your copy directly from the XSSer -Github- repository:

$ git clone https://github.com/epsylon/xsser-public

This version include more features on the GTK+ interface: xsser --gtk

[+ Click for Zoom]	[+ Click for Zoom]
[+ Click for Zoom]	[+ Click for Zoom]

How it works

[+ Click for Zoom]

Installation

XSSer runs on many platforms. It requires Python and the following libraries:

- python-pycurl - Python bindings to libcurl
- python-xmlbuilder - create xml/(x)html files - Python 2.x
- python-beautifulsoup - error-tolerant HTML parser for Python
- python-geoip - Python bindings for the GeoIP IP-to-country resolver library

On Debian-based systems (ex: Ubuntu), run:

$ sudo apt-get install python-pycurl python-xmlbuilder python-beautifulsoup python-geoip

Options

xsser [OPTIONS] [--all <url> |-u <url> |-i <file> |-d <dork> (options)|-l ] [-g <get> |-p <post> |-c <crawl> (options)] [Request(s)] [Checker(s)] [Vector(s)] [Anti-antiXSS/IDS] [Bypasser(s)] [Technique(s)] [Final Injection(s)] [Reporting] {Miscellaneous}

 --version             show program's version number and exit
 -h, --help            show this help message and exit
 -s, --statistics      show advanced statistics output results
 -v, --verbose         active verbose mode output results
 --gtk                 launch XSSer GTK Interface
 --wizard              start Wizard Helper!

 *Special Features*:
   You can set Vector(s) and Bypasser(s) to build complex scripts for XSS
   code embedded. XST allows you to discover if target is vulnerable to
   'Cross Site Tracing' [CAPEC-107]:

   --imx=IMX           IMX - Create an image with XSS (--imx image.png)
   --fla=FLASH         FLA - Create a flash movie with XSS (--fla movie.swf)
   --xst=XST           XST - Cross Site Tracing (--xst http(s)://host.com)

 *Select Target(s)*:
   At least one of these options must to be specified to set the source
   to get target(s) urls from:

   --all=TARGET        Automatically audit an entire target
   -u URL, --url=URL   Enter target to audit
   -i READFILE         Read target(s) urls from file
   -d DORK             Search target(s) using a query (ex: 'news.php?id=')
   -l                  Search from a list of 'dorks'
   --De=DORK_ENGINE    Use this search engine (default: duck)
   --Da                Search massively using all search engines

 *Select type of HTTP/HTTPS Connection(s)*:
   These options can be used to specify which parameter(s) we want to use
   as payload(s) to inject:

   -g GETDATA          Send payload using GET (ex: '/menu.php?q=')
   -p POSTDATA         Send payload using POST (ex: 'foo=1&bar=')
   -c CRAWLING         Number of urls to crawl on target(s): 1-99999
   --Cw=CRAWLER_WIDTH  Deeping level of crawler: 1-5 (default 3)
   --Cl                Crawl only local target(s) urls (default TRUE)

 *Configure Request(s)*:
   These options can be used to specify how to connect to the target(s)
   payload(s). You can choose multiple:

   --cookie=COOKIE     Change your HTTP Cookie header
   --drop-cookie       Ignore Set-Cookie header from response
   --user-agent=AGENT  Change your HTTP User-Agent header (default SPOOFED)
   --referer=REFERER   Use another HTTP Referer header (default NONE)
   --xforw             Set your HTTP X-Forwarded-For with random IP values
   --xclient           Set your HTTP X-Client-IP with random IP values
   --headers=HEADERS   Extra HTTP headers newline separated
   --auth-type=ATYPE   HTTP Authentication type (Basic, Digest, GSS or NTLM)
   --auth-cred=ACRED   HTTP Authentication credentials (name:password)
   --proxy=PROXY       Use proxy server (tor: http://localhost:8118)
   --ignore-proxy      Ignore system default HTTP proxy
   --timeout=TIMEOUT   Select your timeout (default 30)
   --retries=RETRIES   Retries when the connection timeouts (default 1)
   --threads=THREADS   Maximum number of concurrent HTTP requests (default 5)
   --delay=DELAY       Delay in seconds between each HTTP request (default 0)
   --tcp-nodelay       Use the TCP_NODELAY option
   --follow-redirects  Follow server redirection responses (302)
   --follow-limit=FLI  Set limit for redirection requests (default 50)

 *Checker Systems*:
   These options are useful to know if your target is using filters
   against XSS attacks:

   --hash              send a hash to check if target is repeating content
   --heuristic         discover parameters filtered by using heuristics
   --discode=DISCODE   set code on reply to discard an injection
   --checkaturl=ALT    check reply using: alternative url -> Blind XSS
   --checkmethod=ALTM  check reply using: GET or POST (default: GET)
   --checkatdata=ALD   check reply using: alternative payload
   --reverse-check     establish a reverse connection from target to XSSer to
                       certify that is 100% vulnerable (recommended!)

 *Select Vector(s)*:
   These options can be used to specify injection(s) code. Important if
   you don't want to inject a common XSS vector used by default. Choose
   only one option:

   --payload=SCRIPT    OWN  - Inject your own code
   --auto              AUTO - Inject a list of vectors provided by XSSer

 *Anti-antiXSS Firewall rules*:
   These options can be used to try to bypass specific WAF/IDS products.
   Choose only if required:

   --Phpids0.6.5       PHPIDS (0.6.5) [ALL]
   --Phpids0.7         PHPIDS (0.7) [ALL]
   --Imperva           Imperva Incapsula [ALL]
   --Webknight         WebKnight (4.1) [Chrome]
   --F5bigip           F5 Big IP [Chrome + FF + Opera]
   --Barracuda         Barracuda WAF [ALL]
   --Modsec            Mod-Security [ALL]
   --Quickdefense      QuickDefense [Chrome]

 *Select Bypasser(s)*:
   These options can be used to encode vector(s) and try to bypass
   possible anti-XSS filters. They can be combined with other techniques:

   --Str               Use method String.FromCharCode()
   --Une               Use Unescape() function
   --Mix               Mix String.FromCharCode() and Unescape()
   --Dec               Use Decimal encoding
   --Hex               Use Hexadecimal encoding
   --Hes               Use Hexadecimal encoding with semicolons
   --Dwo               Encode IP addresses with DWORD
   --Doo               Encode IP addresses with Octal
   --Cem=CEM           Set different 'Character Encoding Mutations'
                       (reversing obfuscators) (ex: 'Mix,Une,Str,Hex')

 *Special Technique(s)*:
   These options can be used to inject code using different XSS
   techniques. You can choose multiple:

   --Coo               COO - Cross Site Scripting Cookie injection
   --Xsa               XSA - Cross Site Agent Scripting
   --Xsr               XSR - Cross Site Referer Scripting
   --Dcp               DCP - Data Control Protocol injections
   --Dom               DOM - Document Object Model injections
   --Ind               IND - HTTP Response Splitting Induced code
   --Anchor            ANC - Use Anchor Stealth payloader (DOM shadows!)

 *Select Final injection(s)*:
   These options can be used to specify the final code to inject on
   vulnerable target(s). Important if you want to exploit 'on-the-wild'
   the vulnerabilities found. Choose only one option:

   --Fp=FINALPAYLOAD   OWN    - Exploit your own code
   --Fr=FINALREMOTE    REMOTE - Exploit a script -remotely-
   --Doss              DOSs   - XSS (server) Denial of Service
   --Dos               DOS    - XSS (client) Denial of Service
   --B64               B64    - Base64 code encoding in META tag (rfc2397)

 *Special Final injection(s)*:
   These options can be used to execute some 'special' injection(s) on
   vulnerable target(s). You can select multiple and combine them with
   your final code (except with DCP code):

   --Onm               ONM - Use onMouseMove() event
   --Ifr               IFR - Use <iframe> source tag

 *Reporting*:
   --save              export to file (XSSreport.raw)
   --xml=FILEXML       export to XML (--xml file.xml)

 *Miscellaneous*:
   --silent            inhibit console output results
   --no-head           NOT send a HEAD request before start a test
   --alive=ISALIVE     set limit of errors before check if target is alive
   --update            check for latest stable version

Contact

Irc:

   * irc.freenode.net - channel: #xsser

Project Leader:

   * psy - 03c8.net

Retrieved from "https://wiki.owasp.org/index.php?title=OWASP_XSSER&oldid=216240"

Category:

OWASP Project

Difference between revisions of "OWASP XSSER"

Revision as of 15:52, 2 May 2016

Current Version

How it works

Installation

Options

Contact

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Reference

Tools

@@ Line 1: / Line 1: @@
-{|
-|-
-! width="700" align="center" | <br>
-! width="500" align="center" | <br>
-|-
-| align="right" | [[Image:OWASP Inactive Banner.jpg|800px| link=https://www.owasp.org/index.php/OWASP_Project_Stages#tab=Inactive_Projects]]
-| align="right" |
-|}
 [[Category:OWASP Project]]
 {{Social Media Links}}<br>
@@ Line 17: / Line 7: @@
   |-
   | style="width:15%; background:#7B8ABD" align="center"|'''Project Name'''
-  | colspan="7" style="width:85%; background:#cccccc" align="left"|<font color="black">'''XSSer: The Cross Site Scripting Framework'''
+  | colspan="7" style="width:85%; background:#cccccc" align="left"|<font color="black">'''XSSer: "The Cross Site Scripting Framework"'''
   |-
   | style="width:15%; background:#7B8ABD" align="center"| '''Short Project Description'''
@@ Line 24: / Line 14: @@
   |-
   | style="width:15%; background:#7B8ABD" align="center"|'''Key Project Information'''
-  | style="width:14%; background:#cccccc" align="center"|Project Leader<br>[[User:Epsylon|'''psy''']]
+  | style="width:14%; background:#cccccc" align="center"|Project Leader<br>[[User:Psy|'''psy''']]
- | style="width:14%; background:#cccccc" align="center"|Roadmap <br>[http://xsser.sourceforge.net/xsser/xsser-roadmap.pdf '''Next Version''']
   | style="width:14%; background:#cccccc" align="center"|Mailing List<br>[https://lists.owasp.org/mailman/listinfo/owasp_xsser '''Subscribe'''] - [mailto:[email protected] '''Use''']
   | style="width:14%; background:#cccccc" align="center"|License<br>[http://gplv3.fsf.org/ '''GNU GPLv3''']
@@ Line 32: / Line 21: @@
   |}
 {| style="width:100%" border="0" align="center"
-  ! align="center" style="background:#7B8ABD; color:white"|<font color="black">'''Release Status'''
+  ! align="center" style="background:#7B8ABD; color:white"|<font color="black">'''Last Package'''
   ! align="center" style="background:#7B8ABD; color:white"|<font color="black">'''Main Links'''
   ! align="center" style="background:#7B8ABD; color:white"|<font color="black">'''Related Documentation'''
   |-
-  | style="width:29%; background:#cccccc" align="center"|[http://sourceforge.net/projects/xsser/files/latest/download '''v1.6b - "Grey Swarm"''']
+  | style="width:29%; background:#cccccc" align="center"|[https://xsser.03c8.net/xsser/xsser_1.7-1.tar.gz '''"(v1.7-1b) "ZiKA-47 Swarm!"''']
-  | style="width:42%; background:#cccccc" align="center"|[http://xsser.sf.net '''SF Website'''] <br> [http://sourceforge.net/projects/xsser/files/ '''Code Releases''']
+  | style="width:42%; background:#cccccc" align="center"|[https://xsser.03c8.net '''Official site'''] <br> [http://sourceforge.net/projects/xsser/files/ '''Code Releases''']
-  | style="width:29%; background:#cccccc" align="center"| Paper: 'XSS for fun and profit':<br>[http://xsser.sourceforge.net/xsser/XSS_for_fun_and_profit_SCG09_(english).pdf '''English'''] - [http://xsser.sourceforge.net/xsser/XSS_for_fun_and_profit_SCG09_(spanish).pdf '''Spanish''']
+  | style="width:29%; background:#cccccc" align="center"| Paper(2009): 'XSS for fun and profit':<br>[http://xsser.sourceforge.net/xsser/XSS_for_fun_and_profit_SCG09_(english).pdf '''English'''] - [http://xsser.sourceforge.net/xsser/XSS_for_fun_and_profit_SCG09_(spanish).pdf '''Spanish''']
   |}
-----
-=GSoC 2013 Proposal=
-[http://owasp.com/index.php/GSoC2013_Ideas#OWASP_XSSer_Project '''OWASP XSSer Project Ideas''']
-Students presentations, questions and more: [http://sourceforge.net/mailarchive/forum.php?forum_name=xsser-users '''Mailing list archive: GSoC13 thread''']
-Proposals 'on stage':
-<ul>
-<li>http://www.google-melange.com/gsoc/proposal/review/google/gsoc2013/mxprm/17001</li>
-<li>http://www.google-melange.com/gsoc/proposal/review/google/gsoc2013/badc0re/1</li>
-<li>http://www.google-melange.com/gsoc/proposal/review/google/gsoc2013/whenov/1</li>
-</ul>
-----
 =Current Version=
 <table>
 <tr>
-<td>XSSer v1.6b ("The Mosquito: <u>Grey Swarm!</u>")<br><br>
+<td>[[Image:Xsser-zika-banner.png]]<br>
-[[Image:xsser-greyswarm_sm.png]]<br>
+XSSer v1.7-1b ("The Mosquito: <u>ZiKA-47 Swarm</u>")<br>
-[[http://xsser.sf.net/xsser/xsser-greyswarm.png '''+ Click for Zoom''']]<br>
 <ul>
-<li>Download original source code: [http://sourceforge.net/projects/xsser/files/xsser_1.6-1.tar.gz/download '''XSSer v1.6 -beta-''']</li>
+<li>Download (.tar.gz) source code: [http://xsser.03c8.net/xsser/xsser_1.7-1.tar.gz '''XSSer_v1.7-1.tar.gz''']</li>
-<li>Ubuntu/Debian package: [http://xsser.sf.net/xsser/xsser-1.6_all.deb.tar.gz '''XSSer-1.6_all.deb''']</li>
+<li>Download (.zip) source code: [http://xsser.03c8.net/xsser/xsser_1.7-1.zip '''XSSer_v1.7-1.zip''']</li>
-<li>ArchLinux package: [http://aur.archlinux.org/packages.php?ID=43447 '''AUR link (v1.6b)''']</li>
+<li>Ubuntu/Debian package: [http://xsser.03c8.net/xsser/xsser_1.7-1_amd64.deb '''XSSer-1.7-1_all.deb''']</li>
-<li>Gentoo package: [http://perso.ikujam.org/xsser-1.6.1-ebuild.tar.gz '''XSSer Gentoo ebuild (v1.6b)''']</li>
+<li>Or update your copy directly from the XSSer -Github- repository:</li>
-<li>RPM package: [http://xsser.sf.net/xsser/xsser-1.6-1.noarch.rpm.tar.gz '''XSSer-1.6-1.noarch.rpm''']</li>
-<li>Or update your copy directly from the XSSer -Subversion- repository:</li>
-<u>$ svn co https://xsser.svn.sourceforge.net/svnroot/xsser xsser</u><br><br>
+$ git clone https://github.com/epsylon/xsser-public
 </ul>
-This version include more features on the GTK+ interface:
+This version include more features on the GTK+ interface: <b>xsser --gtk</b>
 </td>
 </tr>
@@ Line 83: / Line 54: @@
 <td>
-[[Image:xsser-greyswarm-donate_sm.png]]<br>
+[[Image:Xsser-zika-gui.png]]<br>
-[[http://xsser.sf.net/xsser/xsser-greyswarm-donate.png '''+ Click for Zoom''']]<br>
+[[https://www.owasp.org/images/f/f7/Xsser-zika-gui.png '''+ Click for Zoom''']]<br>
 </td>
 <td>
-[[Image:xsser-greyswarm-map_sm.png]]<br>
+[[Image:Xsser-zika-tor.png]]<br>
-[[http://xsser.sf.net/xsser/xsser-greyswarm-map.png '''+ Click for Zoom''']]<br>
+[[https://www.owasp.org/images/b/b1/Xsser-zika-tor.png '''+ Click for Zoom''']]<br>
 </td>
 </tr>
@@ Line 95: / Line 66: @@
 <tr>
 <td>
-[[Image:xsser-greyswarm-check_sm.png]]<br>
+[[Image:Xsser-zika-map.png]]<br>
-[[http://xsser.sf.net/xsser/xsser-greyswarm-check.png '''+ Click for Zoom''']]<br>
+[[https://www.owasp.org/images/7/74/Xsser-zika-map.png '''+ Click for Zoom''']]<br>
 </td>
 <td>
-[[Image:xsser-greyswarm-conn_sm.png]]<br>
+[[Image:Xsser-zika-spidering.png]]<br>
-[[http://xsser.sf.net/xsser/xsser-greyswarm-conn.png '''+ Click for Zoom''']]<br>
+[[https://www.owasp.org/images/3/38/Xsser-zika-spidering.png '''+ Click for Zoom''']]<br>
 </td>
@@ Line 109: / Line 80: @@
 </tr>
 </table>
-TIP: type: 'xsser --gtk' to start from shell. Or run directly XSSer from menu [[Image:xssericon_32x32.png]]
+= How it works=
+<br>
+[[Image:Xsser-url-schema.png]]<br>
+[[https://www.owasp.org/images/f/f9/Xsser-url-schema.png '''+ Click for Zoom''']]<br>
+<br>
 =Installation=
 <p>
 XSSer runs on many platforms.  It requires Python and the following libraries:<br><br>
      - python-pycurl - Python bindings to libcurl<br>
+    - python-xmlbuilder - create xml/(x)html files - Python 2.x<br>
      - python-beautifulsoup - error-tolerant HTML parser for Python<br>
-    - python-libxml2 - Python bindings for the GNOME XML library<br>
      - python-geoip - Python bindings for the GeoIP IP-to-country resolver library<br><br>
 On Debian-based systems (ex: Ubuntu), run: <br><br>
-     sudo apt-get install python-pycurl python-beautifulsoup python-libxml2 python-geoip
+     $ sudo apt-get install python-pycurl python-xmlbuilder python-beautifulsoup python-geoip<br>
 </p>
-=How to Use=
+=Options=
-xsser [OPTIONS] [-u  |-i  |-d ] [-g  |-p  |-c ] [Request(s)] [Vector(s)] [Bypasser(s)] [Technique(s)] [Final Injection(s)]
+xsser [OPTIONS] [--all <url> |-u <url> |-i <file> |-d <dork> (options)|-l ] [-g <get> |-p <post> |-c <crawl> (options)]
+[Request(s)] [Checker(s)] [Vector(s)] [Anti-antiXSS/IDS] [Bypasser(s)] [Technique(s)] [Final Injection(s)] [Reporting] {Miscellaneous}<br>
-   [http://xsser.sourceforge.net/#usage '''Usage'''] <br>
+   --version             show program's version number and exit
-   [http://xsser.sourceforge.net/#examples '''Examples'''] <br>
+  -h, --help            show this help message and exit
-   [http://xsser.sourceforge.net/#docs '''Documentation'''] <br>
+   -s, --statistics      show advanced statistics output results
-   [http://xsser.sourceforge.net/#screenshots '''Screenshots'''] <br>
+   -v, --verbose         active verbose mode output results
-   [http://xsser.sourceforge.net/#videotutorials '''Videos'''] <br>
+   --gtk                 launch XSSer GTK Interface
+   --wizard              start Wizard Helper!
-=Changelog=
+  *Special Features*:
+    You can set Vector(s) and Bypasser(s) to build complex scripts for XSS
+    code embedded. XST allows you to discover if target is vulnerable to
+    'Cross Site Tracing' [CAPEC-107]:
-'''November, 28, 2011:'''<br>
+    --imx=IMX           IMX - Create an image with XSS (--imx image.png)
+    --fla=FLASH         FLA - Create a flash movie with XSS (--fla movie.swf)
+    --xst=XST           XST - Cross Site Tracing (--xst http(s)://host.com)
-Core: Added Drop Cookie option + Added Random IP X-Forwarded-For option + Random X-Client-IP option + Added GSS and NTLM authentication methods + Added Ignore proxy option + Added TCP-NODELAY option + Added Follow redirects option + Added Follow redirects limiter parameter + Added Auto-HEAD precheck system + Added No-HEAD option + Added Isalive option + Added Check at url option (Blind XSS) + Added Reverse Check parameter + Added PHPIDS (v.0.6.5) exploit + Added More vectors to auto-payloading + Added HTML5 studied vectors + Fixed Different bugs on core + Fixed Curl handlerer options + Fixed Dorkerers system + Fixed Bugs on results propagation + Fixed POST requests.<br>
+  *Select Target(s)*:
+    At least one of these options must to be specified to set the source
+    to get target(s) urls from:
-GTK: Added New features to GTK controller + Added Detailed views to GTK interface.<br><br>
+    --all=TARGET        Automatically audit an entire target
+    -u URL, --url=URL   Enter target to audit
+    -i READFILE         Read target(s) urls from file
+    -d DORK             Search target(s) using a query (ex: 'news.php?id=')
+    -l                  Search from a list of 'dorks'
+    --De=DORK_ENGINE    Use this search engine (default: duck)
+    --Da                Search massively using all search engines
-'''February, 25, 2011:'''<br>
+  *Select type of HTTP/HTTPS Connection(s)*:
+    These options can be used to specify which parameter(s) we want to use
+    as payload(s) to inject:
-Added package for Archlinux.<br><br>
+    -g GETDATA          Send payload using GET (ex: '/menu.php?q=')
+    -p POSTDATA         Send payload using POST (ex: 'foo=1&bar=')
+    -c CRAWLING         Number of urls to crawl on target(s): 1-99999
+    --Cw=CRAWLER_WIDTH  Deeping level of crawler: 1-5 (default 3)
+    --Cl                Crawl only local target(s) urls (default TRUE)
-'''February, 24, 2011:'''<br>
+  *Configure Request(s)*:
+    These options can be used to specify how to connect to the target(s)
+    payload(s). You can choose multiple:
-Core: Added GTK option + Heuristic test + HTTP Response Splitting (ak.a Induced attack!) + DoS (Server) injection + Final code (added DCP & DOM injections) + Update option + Code clean + Bugfixing + New options menu + More advanced statistics system + Updated dorkerers list.<br>
+    --cookie=COOKIE     Change your HTTP Cookie header
+    --drop-cookie       Ignore Set-Cookie header from response
+    --user-agent=AGENT  Change your HTTP User-Agent header (default SPOOFED)
+    --referer=REFERER   Use another HTTP Referer header (default NONE)
+    --xforw             Set your HTTP X-Forwarded-For with random IP values
+    --xclient           Set your HTTP X-Client-IP with random IP values
+    --headers=HEADERS   Extra HTTP headers newline separated
+    --auth-type=ATYPE   HTTP Authentication type (Basic, Digest, GSS or NTLM)
+    --auth-cred=ACRED   HTTP Authentication credentials (name:password)
+    --proxy=PROXY       Use proxy server (tor: http://localhost:8118)
+    --ignore-proxy      Ignore system default HTTP proxy
+    --timeout=TIMEOUT   Select your timeout (default 30)
+    --retries=RETRIES   Retries when the connection timeouts (default 1)
+    --threads=THREADS   Maximum number of concurrent HTTP requests (default 5)
+    --delay=DELAY       Delay in seconds between each HTTP request (default 0)
+    --tcp-nodelay       Use the TCP_NODELAY option
+    --follow-redirects  Follow server redirection responses (302)
+    --follow-limit=FLI  Set limit for redirection requests (default 50)
-GTK: Intuitive navigation + Wizard helper ("build your pentesting answering some questions") + Expert visor (with target(s) geolocation included + Documentation.<br><br>
+  *Checker Systems*:
+    These options are useful to know if your target is using filters
+    against XSS attacks:
-'''November, 13, 2010:'''<br>
+    --hash              send a hash to check if target is repeating content
+    --heuristic         discover parameters filtered by using heuristics
+    --discode=DISCODE   set code on reply to discard an injection
+    --checkaturl=ALT    check reply using: alternative url -> Blind XSS
+    --checkmethod=ALTM  check reply using: GET or POST (default: GET)
+    --checkatdata=ALD   check reply using: alternative payload
+    --reverse-check     establish a reverse connection from target to XSSer to
+                        certify that is 100% vulnerable (recommended!)
-XSSer package for Archlinux can be found in the AUR.<br><br>
+  *Select Vector(s)*:
+    These options can be used to specify injection(s) code. Important if
+    you don't want to inject a common XSS vector used by default. Choose
+    only one option:
-'''November, 11, 2010:'''<br>
+    --payload=SCRIPT    OWN  - Inject your own code
+    --auto              AUTO - Inject a list of vectors provided by XSSer
-Created XSSer package (v1.0) for Ubuntu/Debian based systems.<br><br>
+  *Anti-antiXSS Firewall rules*:
+    These options can be used to try to bypass specific WAF/IDS products.
+    Choose only if required:
-'''November, 9, 2010:'''<br>
+    --Phpids0.6.5       PHPIDS (0.6.5) [ALL]
+    --Phpids0.7         PHPIDS (0.7) [ALL]
+    --Imperva           Imperva Incapsula [ALL]
+    --Webknight         WebKnight (4.1) [Chrome]
+    --F5bigip           F5 Big IP [Chrome + FF + Opera]
+    --Barracuda         Barracuda WAF [ALL]
+    --Modsec            Mod-Security [ALL]
+    --Quickdefense      QuickDefense [Chrome]
-Added more advanced statistics results + Bugfixig.<br><br>
+  *Select Bypasser(s)*:
+    These options can be used to encode vector(s) and try to bypass
+    possible anti-XSS filters. They can be combined with other techniques:
-'''November, 7, 2010:'''<br>
+    --Str               Use method String.FromCharCode()
+    --Une               Use Unescape() function
+    --Mix               Mix String.FromCharCode() and Unescape()
+    --Dec               Use Decimal encoding
+    --Hex               Use Hexadecimal encoding
+    --Hes               Use Hexadecimal encoding with semicolons
+    --Dwo               Encode IP addresses with DWORD
+    --Doo               Encode IP addresses with Octal
+    --Cem=CEM           Set different 'Character Encoding Mutations'
+                        (reversing obfuscators) (ex: 'Mix,Une,Str,Hex')
-Added "final remote injections" option + Cross Flash Attack! + Cross Frame Scripting + Data Control Protocol Injections + Base64 (rfc2397) PoC + OnMouseMove PoC + Browser launcher + Code clean + Bugfixing + New options menu + Pre-check system + Crawler spidering clones + More advanced statistics system + "Mana" output results.<br><br>
+  *Special Technique(s)*:
+    These options can be used to inject code using different XSS
+    techniques. You can choose multiple:
-'''October, 8, 2010:'''<br>
+    --Coo               COO - Cross Site Scripting Cookie injection
+    --Xsa               XSA - Cross Site Agent Scripting
+    --Xsr               XSR - Cross Site Referer Scripting
+    --Dcp               DCP - Data Control Protocol injections
+    --Dom               DOM - Document Object Model injections
+    --Ind               IND - HTTP Response Splitting Induced code
+    --Anchor            ANC - Use Anchor Stealth payloader (DOM shadows!)
-POC: Detecting, exploiting and reporting "fcgi-bin/echo" Oracle vulnerability with XSSer<br>
+  *Select Final injection(s)*:
+    These options can be used to specify the final code to inject on
+    vulnerable target(s). Important if you want to exploit 'on-the-wild'
+    the vulnerabilities found. Choose only one option:
-./XSSer -d "'inurl:fcgi-bin/echo'" --De "google" --proxy "http://127.0.0.1:8118" -s --tweet<br>
+    --Fp=FINALPAYLOAD   OWN    - Exploit your own code
+    --Fr=FINALREMOTE    REMOTE - Exploit a script -remotely-
+    --Doss              DOSs   - XSS (server) Denial of Service
+    --Dos               DOS    - XSS (client) Denial of Service
+    --B64               B64    - Base64 code encoding in META tag (rfc2397)
-Results of the -botnet- attack in real time:<br>
+  *Special Final injection(s)*:
+    These options can be used to execute some 'special' injection(s) on
+    vulnerable target(s). You can select multiple and combine them with
+    your final code (except with DCP code):
-- http://identi.ca/xsserbot01<br>
+    --Onm               ONM - Use onMouseMove() event
-- http://twitter.com/xsserbot01<br><br>
+    --Ifr               IFR - Use <iframe> source tag
-Reported: apróx. 3.000 websites vulnerables (XSSer storm!!).<br><br>
+  *Reporting*:
+    --save              export to file (XSSreport.raw)
+    --xml=FILEXML       export to XML (--xml file.xml)
-'''September 22, 2010:'''<br>
+  *Miscellaneous*:
+    --silent            inhibit console output results
-Added a-xml exporter + ImageXSS + New dorker engines (total 10) + Core clean + Bugfixing + Social Networking XSS auto-publisher + Started -federated- XSS (full disclosure) pentesting botnet.<br>
+    --no-head           NOT send a HEAD request before start a test
+    --alive=ISALIVE     set limit of errors before check if target is alive
-http://identi.ca/xsserbot01<br>
+    --update            check for latest stable version
-http://twitter.com/xsserbot01<br><br>
-'''August 20, 2010:'''<br>
-Added attack payloads to auto-payloader (26 new injections) + POST + Statistics + URL Shorteners + IP Octal + Post-processing payloading + DOM Shadows! + Cookie injector + Browser DoS (Denegation of Service).<br><br>
-'''July 1, 2010:'''<br>
-Dorking + Crawling + IP DWORD + Core clean.<br><br>
-'''April 19, 2010:'''<br>
-HTTPS implemented + patched bugs.<br><br>
-'''March 22, 2010:'''<br>
-Added "inject your own payload" option. Can be used with all character encoding -bypassers- of XSSer.<br><br>
-'''March 18, 2010:'''<br>
-Added attack payloads to auto-payloader (62 different XSS injections).<br><br>
-'''March 16, 2010:'''<br>
-Added new payload encoders to bypass filters. <br><br>
-=Roadmap=
-Download roadmap planning: [http://xsser.sourceforge.net/xsser/xsser-roadmap.pdf '''Next Version''']
 =Contact=
@@ Line 224: / Line 260: @@
      * irc.freenode.net - channel: ''#xsser''
-'''Mailing lists:'''
-    * Owasp: [https://lists.owasp.org/mailman/listinfo/owasp_xsser '''Subscribe'''] [mailto:[email protected] '''Write''']
-    * Sourceforge: [https://lists.sourceforge.net/lists/listinfo/xsser-users '''Subscribe'''] [mailto:[email protected] '''Write''']
 '''Project Leader:'''
-  GPG ID: ''0xB8AC3776''
+     * [[User:Psy|'''psy''']] - [https://03c8.net '''03c8.net''']
-     * Website:
-          o [http://lordepsylon.net '''http://lordepsylon.net''']
-    * Email:
-          o [mailto:[email protected] '''psy''']
-          o [mailto:epsylon@riseup,net '''epsylon''']
-    * Microblogging:
-          o [https://identi.ca/psy '''identi.ca''']
-          o [https://twitter.com/lord_epsylon '''twitter.com''']