Case Studies of Award-Winning XSS Attacks: Part 2

Video description

Learn How to Find Award-Winning XSSs in Modern Web Applications

About This Video

  • Gain the skills you need to become a successful bug hunter
  • Learn how hackers earn a 4-digit reward ($$$$) per XSS
  • Understand how to find XSSs in a step-by-step way through practice (demos)

In Detail

Cross-site scripting (XSS) is one of the most widespread and dangerous vulnerabilities in modern web applications. Interestingly, you can get a 4-digit reward ($$$$) per XSS in bug bounty programs. Although many people hunt for XSS, only a few of them are successful. Do you want to know what makes them successful? They focus on non-standard XSSs, and this course will help you learn just that. If you’ve already caught up with Case Studies of Award-Winning XSS Attacks: Part 1, you’ll be able to build on your knowledge in this second course in the series. The course will get you up to speed with XSS hunting and some more award-winning XSS attacks that will help you develop your skills. You will explore a variety of non-standard XSS attacks:

  • XSS via XML
  • XSS via location.href
  • XSS via vbscript:
  • From XSS to Remote Code Execution

The course also features a demo for every single bug, which will help you understand how to find bugs in a step-by-step manner. All along, the course will guide you through the vulnerabilities in modern web applications that will further build on your knowledge. By the end of this course, you’ll be well-versed with the important XSS attacks and have developed the skills you need to become a successful XSS hunter.

Publisher resources

Download Example Code

Product information

  • Title: Case Studies of Award-Winning XSS Attacks: Part 2
  • Author(s): Dawid Czagan
  • Release date: April 2019
  • Publisher(s): Packt Publishing
  • ISBN: 9781838825607