Your SlideShare is downloading. ×
  • Like
Pwning with XSS: from alert() to reverse shell: Defcon Banglore 2013
Upcoming SlideShare
Loading in...5
×

Thanks for flagging this SlideShare!

Oops! An error has occurred.

×

Now you can save presentations on your phone or tablet

Available for both IPhone and Android

Text the download link to your phone

Standard text messaging rates apply

Pwning with XSS: from alert() to reverse shell: Defcon Banglore 2013

  • 3,491 views
Published

A Glimpse through V4 of OWASP Xenotix XSS Exploit Framework

A Glimpse through V4 of OWASP Xenotix XSS Exploit Framework

Published in Technology
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Be the first to comment
No Downloads

Views

Total Views
3,491
On SlideShare
0
From Embeds
0
Number of Embeds
0

Actions

Shares
Downloads
74
Comments
0
Likes
2

Embeds 0

No embeds

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
    No notes for slide

Transcript

  • 1. • • • •
  • 2. START
  • 3. Xenotix HTTP Web Shell Proxy Web Server ATTACKER VICTIM GET http://facebook.com Serve the JavaScript File Facebook.com HTML page contents FB’s Server
  • 4. SO.... Never Under Estimate the Power of XSS
  • 5. ajinabrahamofficial ajinabrahamofficial ajinabraham ajinabraham ajin.abraham@owasp.org