Abstract

If you find a SQL Injection vulnerability you exploit it using Sqlmap or one of the multiple other tools designed for exploiting SQL Injection. But what would you do if you found an XPATH Injection vulnerability? There are not many tools that are designed for exploiting XPATH Injection.

Don’t worry, in this year nullcon AMMO event, I will be releasing a new tool to help with the process of exploiting XPATH Injection vulnerabilities. XMLChor is an easy to use tool that automatically exploits XPATH Injection vulnerabilities and extracts the data stored from the back-end XML file. I will explain how the tool works and show you a live demo of exploiting XPATH Injection. The next time you find an XPATH Injection vulnerability in a pentest, use XMLChor and make your life easy.