Script Summary: For web2.0 security analysis. To be used with FireBug. For quick analyis, it provides the overall view of the current page contents - javascript, cookies, fuzzable links, form data. For security assessmet, it provides recon scan, bruteforce scan, and fuzzing form. What it differs from the thick-client full-fledged scanner is that this script is tied to the current url page and will not mess with the whole web site. Please report any issue you found in http://userscripts.org/scripts/issues/30285 . I'm committed to fixing any issues and suggestions. The script needs to dial back to our site for loading wordlists as we don't want to make users to be busy with setting up web severs and all those configuration stuffs for using our script. If you're afraid of anonymity, you can simply replace it to your localhost just by tweaking the codes a little bit. Vulnerability Scanning portion of this script is NOT meant to use for full-bloom testing. It's a proof-of-concept on how an injected XSS Script can do
License: GPL v2
