SpiderLabs Defacetool

Home / Hacking, News, Security / SpiderLabs Defacetool

March 14, 2010 PlanetCreator 0 Comments 0 tags

DefaceTool is an open-source Java Server Faces(JSF)testing tool for decoding view state and creating view state attack vectors. The tool can be used to create XSS attacks and session and application scope attacks against Apache MyFaces 1.2.8 applications. The tool has been architected to be extensible and can be modified to support other versions of Apache MyFaces and Sun Mojarra.

Check https://www.trustwave.com/spiderLabs-tools.php

Explore More

Unrestricted File Upload @ Web-Based Teaching System Myanmar

Critical Unrestricted File Upload vulnerability found @ Web-Based Teaching System (Myanmar) URL : http://www.wbts.com.mm Malicious Attacker can upload some file to server without permission ! And It has persistent XSS

Log Poisoning

Log poisoning is a technique that not many know about. this technique works only if you can make an LFI of the page. if we say that you call index.php,

How to Fix a Hacker Attack

After a computer has been hacked it can never be trusted again. So say the pros, and security expert Steve Gibson, of GRC.com, in particular. “There is no way to

[remote] Vite 6.2.2 - Arbitrary File Read
on April 3, 2025 at 12:00 am
Vite 6.2.2 - Arbitrary File Read
[webapps] Nagios Log Server 2024R1.3.1 - Stored XSS
on April 3, 2025 at 12:00 am
Nagios Log Server 2024R1.3.1 - Stored XSS
[remote] Microsoft Office 2019 MSO Build 1808 - NTLMv2 Hash Disclosure
on April 3, 2025 at 12:00 am
Microsoft Office 2019 MSO Build 1808 - NTLMv2 Hash Disclosure
[webapps] ABB Cylon Aspect 3.07.01 - Hard-coded Default Credentials
on April 3, 2025 at 12:00 am
ABB Cylon Aspect 3.07.01 - Hard-coded Default Credentials
[webapps] Webmin Usermin 2.100 - Username Enumeration
on April 3, 2025 at 12:00 am
Webmin Usermin 2.100 - Username Enumeration