OWASP Xenotix XSS Exploit Framework

=Xenotix XSS Exploit Framework v4 2013= https://www.owasp.org/images/thumb/9/98/Xenotix.png/800px-Xenotix.png


 * Official Page: [Xenotix @ Kerala Cyber Force]

The Framework is divided into 4 different modules.

=SCANNER MODULES=


 * Manual Mode Scanner
 * Auto Mode Scanner
 * DOM Scanner
 * Multiple Parameter Scanner
 * POST Request Scanner
 * Header Scanner
 * Fuzzer
 * Hidden Parameter Detector

=INFORMATION GATHERING MODULES=


 * Victim Fingerprinting
 * Browser Fingerprinting
 * Browser Features Detector
 * Ping Scan
 * Port Scan
 * Internal Network Scan

=EXPLOITATION MODULES=


 * Send Message
 * Cookie Thief
 * Phisher
 * Tabnabbing
 * Keylogger
 * HTML5 DDoSer
 * Executable Drive By
 * JavaScript Shell
 * Reverse HTTP WebShell
 * Drive-By Reverse Shell
 * Metasploit Browser Exploit
 * Firefox Reverse Shell Addon (Persistent)
 * Firefox Session Stealer Addon (Persistent)
 * Firefox Keylogger Addon (Persistent)
 * Firefox DDoSer Addon (Persistent)
 * Firefox Linux Credential File Stealer Addon (Persistent)
 * Firefox Download and Execute Addon (Persistent)

=UTILITY MODULES=
 * WebKit Developer Tools
 * Payload Encoder

=Support us on Facebook=


 * Xenotix on Facebook

=White Paper=
 * [Nullcon Goa 2013, India]
 * Download From Exploit-DB
 * Download From PacketStorm Security

=Tutorials=

Version 3 Videos


 * OWASP Xenotix XSS Exploit Framework v3 2013: XSS Scanner Module
 * OWASP Xenotix XSS Exploit Framework v3 2013: XSS Keylogger
 * OWASP Xenotix XSS Exploit Framework v3 2013: XSS Executable Drive-By
 * OWASP Xenotix XSS Exploit Framework v3 2013: XSS Reverse Shell
 * OWASP Xenotix XSS Exploit Framework v3 2013: XSS DDoSer

Version 2 Videos


 * Xenotix XSS Exploit Framework 2013 Version 2 Tutorial

Version 1 Videos


 * Xenotix XSS Exploit Framework 2012 Version 1 Tutorial

=Talk on OWASP Xenotix XSS Exploit Framework [video] =


 * OWASP Xenotix XSS Exploit Framework v2 2012: Talk at ClubHack 2012, India

=IMPORTANT=

The tool may be detected by some Anti-virus solutions as a threat. However it is due to the features in the exploitation framework.

=Download=
 * Version 4 Download OWASP Xenotix XSS Exploit Framework v4
 * '''Version 4 Mirror: DropBox
 * Version 3 [[File:OWASP_Xenotix_XSS_Exploit_Framework_v3_2013.zip]]
 * Version 2 [[File:Xenotix_XSS_Exploit_Framework_2013_v2.zip‎]]
 * Version 1 [[File:Xenotix_XSS_Exploitation_Framework.zip]]