TUCoPS :: HP Unsorted X :: c07-2035.htm

xss filter to protect from xss attacks
xss filter to protect from xss attacks
xss filter to protect from xss attacks


I have created a xss filter to protect from xss attacks. Though i have 
filtered only for 8 characters but i was able to test against all the 
attacks mentioned in the RSnake's cheat sheet. Appscan was not able to 
detect any xss attacks on it. I request the application security community 
to help test this filter. 90% i am sure that you wont be able to perform any 
xss attack on it, the rest 10% i will find out after the feedback from the 
community. For the curious mind, it is written in java

In case if you are successful in performing xss attack, please do reply to 
this email with your name, browser and the xss attack string.

url - http://www.attacklabs.com/xssfilter/ 

I appreciate your time and effort. Thanks a lot in advance

regards
Anurag

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH