i know there's a lot of stupid jokes about XSS vulns right now, but I was wondering if there is any firewall or IDS software that can look for suspicious GET requests ... ie.
GET /vulnerablewebapp/?<XSS SHZNIT> I'm sure there's a program out there ... and I'm stupid, please don't kill me... -- Justin Shin _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
