Learn How to Find Award-Winning XSSs in Modern Web Applications
About This Video
- Become a Successful Bug Hunter
- Learn From One of The Top Hackers at HackerOne
Cross-site scripting (XSS) is one of the most widespread and dangerous vulnerabilities in modern web applications.
Interestingly, you can even get a 4-digit reward ($$$$) per single XSS in bug bounty programs. Although many people hunt for XSS, only a few of them are actually successful. What makes them succeed? They focus on non-standard XSSs, and this is exactly what you’ll learn in this course.
If you’ve already caught up with Case Studies of Award-Winning XSS Attacks: Part 1, get ready to build on your knowledge with the second course in this series - Case Studies of Award-Winning XSS Attacks: Part 2. With this course, you will get up to speed with XSS hunting and some more award-winning XSS attacks that will help you develop your skills.
You’ll explore a variety of non-standard XSS attacks, right from XSS via XML and XSS via location.href, through to XSS via VBScript and XSS to Remote Code Execution. The course also features a demo for every single bug, which will help you understand how to find bugs in a step-by-step manner. All along, the course will guide you through the vulnerabilities in modern web applications that will further build on your knowledge.
By the end of this course, you will be well-versed with the important XSS attacks and have developed the skills you need to become a successful XSS hunter.
Table of Contents
Chapter 1 : Introduction
- Introduction 00:04:54
- Chapter 2 : XSS via XML
- Chapter 3 : XSS via Location.href
- Chapter 4 : XSS via Vbscript
- Chapter 5 : From XSS to Remote Code Execution
Chapter 6 : Summary
- Summary 00:02:49
- Title: Case Studies of Award-Winning XSS Attacks: Part 2
- Release date: April 2019
- Publisher(s): Packt Publishing
- ISBN: 9781838825607