DeXSSDeXSS project provides a SAX2 Parser to help protect against Cross-site scripting (XSS) attacks. | |
Download |
DeXSS Ranking & Summary
Advertisement
- License:
- Academic Free License
- Price:
- FREE
- Publisher Name:
- Leigh L. Klotz, Jr
- Publisher web site:
- http://software.graflex.org/dexss/
DeXSS Tags
DeXSS Description
DeXSS project provides a SAX2 Parser to help protect against Cross-site scripting (XSS) attacks. DeXSS project provides a SAX2 Parser to help protect against Cross-site scripting (XSS) attacks.DeXSS uses TagSoup to parse potentially malformed input, followed by a SAX2 filter pipeline to remove JavaScript from HTML.You can use the DeXSS parser in place of your existing SAX2 parser, or you can use the DeXSS utility to provide a string-to-string conversion.Requirements:· Tag SoupHow to build1. Obtain tagsoup-1.1.jar from http://tagsoup.info (If you need to change the TagSoup version, edit the file etc/build/build.properties.)2. Place it in the dexss-1.0.0 directory3. Type ant dist docs-api -emacsHow to test1. Test for false positives java -classpath tagsoup-1.1.jar:dist/lib/dexss-1.0.0.jar com.xerox.adoc.dexss.Test tests/benign/*.txt or java -classpath tagsoup-1.1.jar;dist/lib/dexss-1.0.0.jar com.xerox.adoc.dexss.Test tests/benign/*.txt 2. Test for false negatives java -classpath tagsoup-1.1.jar:dist/lib/dexss-1.0.0.jar com.xerox.adoc.dexss.Test tests/xss/*.txt or java -classpath tagsoup-1.1.jar;dist/lib/dexss-1.0.0.jar com.xerox.adoc.dexss.Test tests/xss/*.txt
DeXSS Related Software