I've made a tiny utility module called HTML::XSSLint to audit XSS (Cross Site Scripting) vulnerability in HTML forms on web pages. The way this module works is not so robust, but it'll be useful for handy checking.
Re:Cool!
miyagawa on 2002-08-06T12:19:35
Umm, what's webappsec and WASP team? (I know heavy metal band WASP, tho;) Re:Cool!
Matts on 2002-08-06T13:08:15
WebAppSec is a mailing list managed by securityfocus.com, which discusses all aspects of web security, mainly XSS bugs, but lots of other stuff too.
WASP is the (Open) Web Applications Security Project - a documentation and tools project for managing things like this.
