Posts Tagged ‘XSS’

BackTrack is a Linux-based penetration testing OS that aids security professionals in the ability to perform assessments in a purely native environment dedicated to hacking. It is equipped with tons of security software that you might need.

The Linux installation that it is based on is known as Ubuntu. Ubuntu is known as being a very user friendly operating system. The installation also has several different UI configurations that you can use to get started. There is the gnome desktop interface and KDE interface.

If you are a new user then you might want to go with the Gnome interface since some people seem to think that it is easier. More advanced users might want to try the KDE version of the operating system. It gives you more options to configure the system.

There are several different aspects of the Backtrack operating system that allow it to be the tool of choice for security professionals. One of these is the amount of different categories of security that the operating system maintains software for.

These categories include:

1. Information gathering
2. Vulnerability assessment
3. Exploitation tools
4. Privilege escalation
5. Maintaining access
6. Reverse engineering
7. RFID tools
8. Stress testing
9. Forensics
10. Reporting tools
11. Services
12. Miscellaneous

BackTrack includes many well known security tools including:

1. Metasploit for integration
2. Wi-Fi drivers supporting monitor mode (rfmon mode) and packet injection
3. Aircrack-ng
4. Gerix Wifi Cracker
5. Kismet
6. Nmap
7. Ophcrack
8. Ettercap
9. Wireshark
10. BeEF (Browser Exploitation Framework)
11. Hydra
12. OWASP Mantra Security Framework, a collection of hacking tools, add-ons and scripts based on Firefox
13. Cisco OCS Mass Scanner, a very reliable and fast scanner for Cisco routers with telnet and enabling of a default password.
14. Burpsuite


This cheat sheet is for people who has fair knowledge on Javascipt and already understand the basics of XSS attacks. This will help in understanding XSS in depth.

XSS Cheatsheet_v1.0