Easily detect cross-site scripting vulnerabilities using fiddler.
Copy FiddlerXSS.dll to the Fiddler 2 Inspectors folder, located at %ProgramFiles%\Fiddler2\Inspectors by default.
1) Capture a request containing a query string.
2) Navigate to the XSS inspector tab.
3) Click the Test button and observe the results.