Testing For XSS, SQL Injections and etc

How does one test for XSS, SQL Injections and things like that?

Some tools can be added to the Firefox browser to perform penetration testing. For example, FoxyProxy (for TOR navigation), Wappalizer (to recognize CMS), Add N Edit Cookies (for cookies), and SQL Inject Me (for SQL Injection).

Take a look a this blog post, http://www.securityaegis.com/hacking-with-your-browser/

I’m sure there are other things you can use, but let us know what you decide to do and what works for you. Thanks!

Firefox has extension for this.

and check this: