Need tool to test XSS Vulnerabilities on our site

Looking for a tool to test XSS Vulnerabilities on our site

I need to find a tool we can run which will enable us to help find XSS Vulnerabilities and to test our Anti-XSS fixes.

What can you suggest?

Thanks
newbiewebSr. Software EngineerAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

 
btanExec ConsultantCommented:
Check out this list like in the sequence of XSSer, ZAP and Xenotix XSS Exploit Framework as the test gets deeper to exploitation of vulnerability found.

https://www.owasp.org/index.php/OWASP_XSSER
https://www.owasp.org/index.php/OWASP_Zed_Attack_Proxy_Project
https://www.owasp.org/index.php/OWASP_Xenotix_XSS_Exploit_Framework
0

Experts Exchange Solution brought to you by ConnectWise

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
 
newbiewebSr. Software EngineerAuthor Commented:
What is this Burp Suite all about?
0
 
btanExec ConsultantCommented:
Burp suite is a well used proxy tool to inspect HTTP/S data traffic like wireshark, and act like man in the browser (similar to fiddler) to hijack data and "tamper" what the client browser sent to web server. See the XSS example. By the way, there is a community version but not having the scanner capabilities that is in its commercial versions. You can try trial version.
https://portswigger.net/burp
https://support.portswigger.net/customer/portal/articles/1965737-using-burp-scanner-to-find-cross-site-scripting-xss-issues
0
 
newbiewebSr. Software EngineerAuthor Commented:
thanks
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.