Comments on: How I tell my clients that XSS is bad

Comments on: How I tell my clients that XSS is bad http://chirashi.zensay.com/2009/09/how-i-tell-my-clients-that-xss-is-bad/ a blog with scattered thoughts on security. Fri, 03 Sep 2010 13:45:08 +0000 http://wordpress.org/?v=2.9.2 hourly 1 By: nickerson http://chirashi.zensay.com/2009/09/how-i-tell-my-clients-that-xss-is-bad/comment-page-1/#comment-84 nickerson Sun, 25 Oct 2009 23:18:04 +0000 http://chirashi.zensay.com/?p=197#comment-84 xss, use beef to control drop meterperter to host. dump all pw and ligt up shell. Show client internal data leakage botnet you have created. Use dumped pw to own domain. create AD admin account. Watch client shit their pants and never ignore xss again.<br><br><br>works every time. xss, use beef to control drop meterperter to host. dump all pw and ligt up shell. Show client internal data leakage botnet you have created. Use dumped pw to own domain. create AD admin account. Watch client shit their pants and never ignore xss again.

works every time.

]]>