Cross-Site Scripting (XSS) vulnerabilities pose a significant threat to web application security, often resulting in severe breaches. Traditional XSS detection methods, relying on brute-forcing payloads, are time-consuming and resource-intensive. This paper presents JAMXSS (Just A Monster XSS Scanner), an advanced tool designed to enhance XSS vulnerability detection using machine learning techniques. JAMXSS improves detection efficiency by predicting and analyzing the context of reflections within web applications, generating context-specific payloads. The tool integrates components such as a crawler for URL collection, a reflection tester, a context analyzer, and a payload generator. Evaluation results from controlled environments and real-world applications demonstrate JAMXSS's effectiveness in identifying vulnerabilities with high accuracy. By combining machine learning with innovative detection and payload generation methods, JAMXSS offers a robust solution for mitigating XSS vulnerabilities.
Article Details
Unique Paper ID: 167184
Publication Volume & Issue: Volume 11, Issue 3
Page(s): 532 - 536
Article Preview & Download
Share This Article
Join our RMS
Conference Alert
NCSEM 2024
National Conference on Sustainable Engineering and Management - 2024