Anurag Agarwal has posted a pretty cool AJAX Sniffer PoC on his blog. The sniffer POC was built on the original idea discussed by the Italian researcher, Stefano Di Paola, in his CCC paper "Subverting AJAX".
You might remember that Stefano is the researcher that discovered the recent Adobe PDF XSS vulnerability.
No comments:
Post a Comment