Ra.2 is basically a lighweight Mozilla Firefox Add-on that uses a very simple yet effective and unique approach to detect most DOM-based XSS vulnerabilities, if not all.
Being a browser-add on its a session-aware tool which can scan a web-application that requires authentication, although the user needs to manually needs to authenticate into the application, prior to scanning. Ra.2 uses custom collected list of XSS vectors which has been heavily modified to be compatible with its scanning technology. The add-on also implements basic browser intrumentation to simulate a human interaction to trigger some hard to detect DOM-based XSS conditions.
Features -
False positive free by design: Vulnerable URLs are saved in DB, if and only if, our payload is executed successfully by the browser. Hence marked exploitable. If isn't false-positive, it's a bug! Report us :-)
Large collection of injection vectors, includes “modified” R’Snake’s vectors as well.
Supports transforming Unicode characters for testing content aware application.
Automatically handles JavaScript obfuscation/compression, as it relies on native interpreter.
Fast and light-weight.
Pretty easy learning curve. Point-n-Click.
Basic browser automation support: Simulates some of the browser events that require human interaction to trigger the XSS condition. Example:
<a href="javascript:alert(/XSS/)>Click here</a>
type="button" value="Continue" onclick="javascript:alert(/XSS/) />and similar scenarios.
Centralized reporting: Suitable for enterprise standard multi-user environment.
Installation :
1. Download the "ra.two.xpi" file and install it within Mozilla Firefox. We have tested it to be working fine on Mozilla Firefox Version 3.6.0 running on Windows 7 64bit. Your mileage may vary.
2. Download the archive "vectors.zip". Extract the contents ("xss.txt") to a folder. Rename the folder "xss" and copy it to the root of "C:". The resulting path should be "C:\xss\xss.txt".
3. Download the archive "reporting-tool.zip". Extract the contents to the webroot of your Apache server. We have tested it using the XAMPP package (http://www.apachefriends.org/en/xampp.html). In our case the path is "C:\xampp\htdocs\xss\"
4. Finally import the database schema to the MySQL via phpMyAdmin, required for the reporting tool.
5. The tool should be ready to use. If you find anything not working or buggy, please email us or raise a ticket at http://code.google.com/p/ra2-dom-xss-scanner/issues/list
Download -
ra2-osx-mLion.zip - [MacOS X] Ra.2 DOM XSS Scanner - Mozilla Add-On Source & Installer
Download other version s-
Source -
0 comments:
Post a Comment