Learn How to Find Award-Winning XSSs in Modern Web Applications
About This Video
- Become a Successful Bug Hunter
- Learn From One of The Top Hackers at HackerOne
Cross-site scripting (XSS) is one of the most widespread and dangerous vulnerabilities in modern web applications. Bug bounty programs give you the opportunity to hunt for XSS and even receive a 4-digit reward ($$$$) per XSS, which is challenging yet rewarding. Although a large number of people hunt for it, only a few are actually successful.
What makes them successful?
They focus on non-standard XSSs and this is exactly what this course covers. You’ll explore non-standard XSS attacks, understanding - XSS via image, XSS via HTTP response splitting, XSS via cookie, and XSS via AngularJS template injection. You’ll even get hands-on with finding bugs, thanks to the demos that help you practice step-by-step. The course will also take you through the vulnerabilities in modern web apps.
By the end of this course, you will have the skills you need to confidently track down bugs and become a successful XSS hunter.
To reinforce your knowledge further, you can also explore the second course in this series - Case Studies of Award-Winning XSS Attacks: Part 2.
Table of Contents
Chapter 1 : Introduction
- Introduction 00:10:54
- Chapter 2 : XSS via Image
- Chapter 3 : XSS via HTTP Response Splitting
- Chapter 4 : XSS via Cookie
- Chapter 5 : XSS via AngularJS Template Injection
Chapter 6 : Summary
- Summary 00:03:49
- Title: Case Studies of Award-Winning XSS Attacks: Part 1
- Release date: April 2019
- Publisher(s): Packt Publishing
- ISBN: 9781838829223