http://blogs.msdn.com/b/cisg/archive/2008/09/01/how-to-detect-cross-site-scripting-vulnerabilities-using-xssdetect.aspxRV again... Last time we saw how to fix a cross site scripting (XSS) vulnerability. This time we look at how we can detect cross site scripting vulnerabilities using automated tools. Being the most common vulnerability found in web applications, it isen-USTelligent Evolution Platform Developer Build (Build: 5.6.50428.7875)http://blogs.msdn.com/b/cisg/archive/2008/09/01/how-to-detect-cross-site-scripting-vulnerabilities-using-xssdetect.aspx#9026218Fri, 31 Oct 2008 11:54:01 GMT91d46819-8472-40ad-a661-2c78acb4018c:9026218yowhann<p>Unsupported way of doing this in VS2008 right now is to replace HostApplication childnodes with:</p> <p> &nbsp; &nbsp;&lt;Name&gt;Microsoft Visual Studio&lt;/Name&gt;</p> <p> &nbsp; &nbsp;&lt;Version&gt;9.0&lt;/Version&gt;</p> <p>under addin file in Application Data\Microsoft\MSEnvShared\Addins\ </p><div style="clear:both;"></div><img src="http://blogs.msdn.com/aggbug.aspx?PostID=9026218" width="1" height="1">http://blogs.msdn.com/b/cisg/archive/2008/09/01/how-to-detect-cross-site-scripting-vulnerabilities-using-xssdetect.aspx#9026163Fri, 31 Oct 2008 11:15:13 GMT91d46819-8472-40ad-a661-2c78acb4018c:9026163yowhann<p>Thanks, used this back in VS2005 and am missing it for 2008. Is there an approx timeline when it will be released for VS2008?</p><div style="clear:both;"></div><img src="http://blogs.msdn.com/aggbug.aspx?PostID=9026163" width="1" height="1">http://blogs.msdn.com/b/cisg/archive/2008/09/01/how-to-detect-cross-site-scripting-vulnerabilities-using-xssdetect.aspx#8920998Wed, 03 Sep 2008 03:02:40 GMT91d46819-8472-40ad-a661-2c78acb4018c:8920998Code Junkie<p>This week I have posted another blog entry on our team site. It is on using automated code analysis tool</p> <img src="http://blogs.msdn.com/aggbug.aspx?PostID=8920998" width="1" height="1">http://blogs.msdn.com/b/cisg/archive/2008/09/01/how-to-detect-cross-site-scripting-vulnerabilities-using-xssdetect.aspx#8919695Tue, 02 Sep 2008 13:00:22 GMT91d46819-8472-40ad-a661-2c78acb4018c:8919695sgt<p>XssDetect:</p> <p>System Requirements</p> <p>Supported Operating Systems: Windows Vista; Windows XP</p> <p>Microsoft Visual Studio 2005</p> <p>Microsoft .NET Framework Version 2.0</p> <p>Does microsoft provide installation file for VS2008 and .NET 3.5? (I seem not to be able to install on VS2008)</p> <div style="clear:both;"></div><img src="http://blogs.msdn.com/aggbug.aspx?PostID=8919695" width="1" height="1">http://blogs.msdn.com/b/cisg/archive/2008/09/01/how-to-detect-cross-site-scripting-vulnerabilities-using-xssdetect.aspx#8917844Tue, 02 Sep 2008 00:58:20 GMT91d46819-8472-40ad-a661-2c78acb4018c:8917844a-foton &raquo; How To: Detect Cross Site Scripting Vulnerabilities using XSSDetect<p>PingBack from <a rel="nofollow" target="_new" href="http://blog.a-foton.ru/2008/09/how-to-detect-cross-site-scripting-vulnerabilities-using-xssdetect/">http://blog.a-foton.ru/2008/09/how-to-detect-cross-site-scripting-vulnerabilities-using-xssdetect/</a></p><img src="http://blogs.msdn.com/aggbug.aspx?PostID=8917844" width="1" height="1">