Truffle Security relaunches XSS Hunter tool with new features

XSS Hunter, a popular tool for detecting cross-site scripting (XSS) bugs on sites, now belongs to Truffle Security who have launched a new version with enhanced security features. Given that XSS is a frequent vulnerability (about 23% of the bug reports submitted to bug bounty platform HackerOne), the tool’s modifications should mitigate its previous data leakage risks. The new version also supports detection of other vulnerabilities like cross-origin resource sharing (CORS) misconfigurations and scans for source code leaks.