Blind XSS presented at DEF CON 20

by Adam evilpacket Baldwin,

Tags: Security

Summary : This talk will announce the release and
demonstrate the xss.io toolkit. xss.io is a platform
to help ease cross-site scripting (xss) exploitation
and specifically for this talk identification of blind
xss vectors. Think drag and drop exploits post xss
vuln identification. For blind xss, xss.io is a callback
and hook manager for intel collected by executed
and non-executed but accessed payloads.