|
XSS Attacks: Cross Site Scripting Exploits And Defense
Cross Site Scripting Attacks starts by defining the terms and laying out the ground work. It assumes that the reader is familiar with basic web programming (HTML) and JavaScript. First it discusses the concepts, methodology, and technology that makes XSS a valid concern. It then moves into the various types of XSS attacks, how they are implemented,
used, and abused. After XSS is thoroughly explored, the next part provides examples of XSS malware and demonstrates real cases where XSS is a dangerous risk that exposes internet users to remote access, sensitive data theft, and monetary losses. Finally, the book closes by examining the ways developers can avoid XSS vulnerabilities in their web applications, and how users can avoid becoming a victim. The audience is web developers, security practitioners, and managers.
*XSS Vulnerabilities exist in 8 out of 10 Web sites
*The authors of this book are the undisputed industry leading authorities
*Contains independent, bleeding edge research, code listings and exploits that can not be found anywhere else
Ch. 1 Cross-site scripting fundamentals 1
Ch. 2The XSS discovery toolkit15
Ch. 3XSS theory67
Ch. 4XSS attack methods163
Ch. 5Advanced XSS attack vectors191
Ch. 6XSS exploited219
Ch. 7Exploit frameworks293
Ch. 8XSS worms375
Ch. 9Preventing XSS attacks395
|
