Some XSS Vulnerabilities links
I spent some time on XSS (Cross Site Scripting) Vulnerabilities scan and problem solving last month, here is some links when I used, if I have time I will write more on this topic.
A detail presentation on how a google desktop's security hole was used by XSS to perform a "perfect attack": http://download.watchfire.com/googledesktopdemo/index.htm
A good slides explain what's XSS and how it attack in action: http://www.sven.de/xsss/wth_xsss_slides.pdf
XSS explained and free scan service: http://www.acunetix.com/websitesecurity/cross-site-scripting.htm
Scripts for XSS hack (don't use it do bad things...): http://ha.ckers.org/xss.html
Step by step hack a site with XSS (don't use it do bad things, again...): http://ha.ckers.org/deathby1000cuts/
A very good article: http://www.milw0rm.com/papers/162
Related posts:
- Google Maps / Live Maps switcher bookmarklet
- My GAE toy: Site Traffic Comparer
- Display alexa traffic image elsewhere
- Get Alexa image signature.
- A page which crash Firefox 3.0
- HTML Combobox
- ASP.NET MVC is out! (though it's a preview version...)
- Notes on learning jQuery
- Learning notes on Javascript class/objects
- Connect to a VPN and keep normal Internet connections
Search related in web:
