A BurpSuite plugin to help detect ASP.NET cookieless sessions which can often lead to XSS as described here. This plugin adds an active scanner check which test for ASP.NET cookieless sessions, and also creates a custom scanner insertion point when a cookieless sessions is present in the path of a request.
-
Notifications
You must be signed in to change notification settings - Fork 2
A BurpSuite plugin to scan for ASP.NET cookieless session support
License
danielthatcher/Cookieless-Session-Scanner
About
A BurpSuite plugin to scan for ASP.NET cookieless session support
Resources
License
Stars
Watchers
Forks
Releases
No releases published
Packages 0
No packages published