an injection attack visualiser
visuali.mp4
-
A tool to help visualise injection attacks such as Cross-Site Scripting, SQL Injection and Command Injection, practice offensive techniques, and understand defences against them.
-
Visualise how user input is reflected into the source code of a web page and view the rendered result in your browser, allowing you to practise executing cross-site scripting attacks locally.
-
Change sanitisation options to visualise how different encodings and escape sequences affect the rendered web page.
-
Change contexts to observe how different techniques are required to exploit cross-site scripting vulnerabilities, depending on where the input is reflected into the output.