Security Research

by Alexander Sotirov

Navigation

Resources

Latest posts

• Assured Exploitation 2011
• You Should Work for Symantec
• CSAW final challenge
• CSAW reversing challenge
• Darknet design

Archives

• 2011 | 2010 | 2009 | 2008

Follow

• Twitter
• Blog feed

Contact

• alex@sotirov.net
• PGP key

Meet me at

• CanSecWest

  Vancouver, Mar 9-11

• Infiltrate

  Miami Beach, Apr 16-17

Blackbox reversing of XSS filters

Reverse engineering web applications is very different from standard binary reversing, because we usually we have only limited remote access to the application. In this talk I presented a blackbox approach to reverse engineering cross-site scripting filters in web applications. I discussed the typical design and implementation of XSS filters and present a tool that makes it easier to reverse engineer and find vulnerabilities in these filters. The effectiveness of this approach was demonstrated with multiple XSS vulnerabilites in Facebook.

Downloads

• Source code

This work was presented at Recon 2008.