Dismiss Notice
Welcome to Our Community
Wanting to join the rest of our members? Feel free to sign up today.

JavaScript bug hunting tool demonstrated

Discussion in 'General Webmaster Helpdesk' started by temi, Mar 25, 2007.

  1. temi

    temi Facilitator Webmaster

    A security researcher at ShmooCon on Saturday demonstrated, but did not release, a tool that turns the PCs of unknowing Web surfers into hacker help.

    As expected, SPI Dynamics researcher Billy Hoffman demonstrated a Web application vulnerability scanner written in JavaScript. The tool, called Jikto, can make an unsuspecting Web user's PC silently crawl and audit public Web sites, and send the results to a third party, Hoffman said.

    But, in a change of plans, Hoffman did not publicly release Jikto. "The higher-ups first say we can, and then they change their mind," he said after his presentation. "We decided to focus on the educational message and show people the danger."
    Full story: JavaScript bug hunting tool demonstrated | Tech News on ZDNet

Featured Resources (View All)

Share This Page