Cross Site Scripting - XSS

Explore the fundamentals of Cross Site Scripting (XSS) in this 25-minute video from Bugcrowd University. Delve into the history and power of XSS vulnerabilities, one of the most prevalent security issues on the internet. Learn about different XSS classes, examine real-world examples like the Myspace and Tweetdeck worms, and discover best practices for prevention. Gain insights into advanced topics such as DOM XSS, blind XSS techniques, and useful tools for XSS hunting. Begin your journey into white hat hacking with this comprehensive introduction to XSS, complete with references to key resources and experts in the field.

Intro
Module Trainer
Module Outline
Module Reading
Introduction to Cross Site Scripting
Classes of XSS
Myspace Worm - Stored XSS
Tweetdeck Worm - Stored XSS
Best Practices
Advances in XSS
DOM XSS - What to Look For?
DOM XSS - What Does It Look Like?
RSnake)
Oxsobky)
Ashar Javed)
Tooling
XSSHunter (Blind)
Other Blind XSS Frameworks
Jackmasa's XSS Mindmap
Labs