Reputation: 107
Is there a way to do cross site script (XSS) testing using JMeter
Given that JMeter is not a browser and only simulates the actions of a browser, has anyone ever attempted to do cross-site script testing using JMeter?. I was reading online some articles about how to do security testing using JMeter but I didn't come across any work elaborating any attempts to do cross-site script testing.
I have done performance testing using JMeter, but I can't think of any way performing an XSS test using JMeter. So would love to hear, ideas and thought in this regard, thanks.
Upvotes: 0
Views: 396
Answers (1)
Reputation: 414
Jmeter is mainly meant for performance and load testing. Also a little bit of automation can also be done with jmeter(even though you can get better tools for automation out there). Again , regarding security testing, yes it can be done by providing xss scripts in parameters and request headers of requests and then bombarding to the server. Also you can do ddos attack with jmeter. But for these kind of penetration testinh you have better tools out there. I suggest you to do penetration testing witj owasp zap and to do it in a professional way. Install a kali linux and do ethical hack.
Upvotes: 1
Related Questions
- How to test using Cross-site Scripting (XSS)
- How to load test https with JMeter
- Better way to execute Javascript in Jmeter
- Does Jmeter support client side javascript
- How to handle JavaScript files via Jmeter
- Cross site Scripting(XSS) Vulnerability possible
- Use jmeter to test multiple Websites
- Is it possible to execute http script recorded using JMeter as https?
- Using JMeter with iframes
- Can i export a jmeter test as a script?