s0md3v/XSStrike
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
65dd68ae9051ce7cecf3be23fbda6e329d8580af
XSStrike/CHANGELOG.md
Fabian Foerg fe81c53167 Fix DOM scanner on Windows/macOS/iOS 
The DOM scanner colors sources and sinks in script lines.  Moreover,
that scanner collects all colored lines:
0ecedc1bba/core/dom.py (L50)

As coloring is disabled on Windows, macOS, and iOS, no potentially
tainted lines will be collected on these platforms:
0ecedc1bba/core/colors.py (L8-L9)
Consequently, the report of potential DOM vulnerabilities is always
empty.

This change fixes this bug by surrounding sources and sinks with `*`
characters.

Also, this change removes unused colors imports.
2019-12-30 17:10:40 -05:00

2.4 KiB
Raw Blame History

3.1.5

  • Fix color bug that resulted in DOM XSS vulnerabilities not being reported on certain systems (Windows, macOS, iOS)

3.1.4

  • Negligible DOM XSS false positives
  • x10 Faster crawling by
    • Removing additional request for detecting DOM XSS
    • Skipping testing of a parameter multiple times

3.1.3

  • Removed browser engine emulation
  • Fixed a few bugs
  • Added a plugin to scan for outdated JS libraries
  • Improved crawling and DOM scanning

3.1.2

  • Fixed POST data handling
  • Support for JSON POST data
  • Support for URL rewriting
  • Cleaner crawling dashboard
  • No more weird characters while scanning DOM
  • Better DOM XSS scanning
  • Handle unicode while writing to file
  • Handle connection reset
  • Added ability to add headers from command line
  • Fixed issue which caused foundParams to not be tested

3.1.1

  • Fixed a build breaking typo

3.1.0

  • Various minor enhancements and bug fixes
  • Browser engine integration for zero false positives
  • Coverage of event handler context

3.0.5

  • Fixed a bug in HTML Parser
  • Ability to add urls from file
  • More modular structure
  • Show parameter name while bruteforcing
  • Fix payload display while using POST method

3.0.4

  • Fixed a bug in bruteforcer
  • Fixed a major bug in HTML Parser
  • Added progress bar for bruteforcer
  • Code refactor
  • Updated signature for Fortiweb WAF

3.0.3

  • Minor bug fixes
  • Proxy Support
  • Blind XSS support
  • Detection of up to 66 WAFs

3.0.2

  • Ability to bruteforce payloads from a file
  • Verbose output toggle
  • Payload encoding: base64
  • Handle MemoryError in DOM scanner
  • Fixed a bug in bruteforcer

3.0.1

  • Fixed poc generation
  • Better multi js context injection
  • Better wrong content type handling
  • Handle high variance of context breakers
  • Better efficiency check
  • Fixed update mechanism
  • Added license
  • Added --skip switch
  • Ignore SSL certificates

3.0.0

Production ready stable release with no known bugs

3.0-rc-1

  • Removed redundant code & imports
  • Disable colors in windows and mac
  • Fixed user-agent overriding
  • Handle wrong content type
  • Multi-thread scanning
  • Rewritten JavaScript parser to be more accurate
  • Handle dynamic number of reflections
  • Better regex for locating DOM sources
  • Fixed a bug in DOM scanning while crawling
  • Flexible crawling with ability to specify threads, depth
  • Treat html entity and slash escaping differently
  • Other minor bug fixes

3.0-beta

Intial beta release for public testing