Session Stealing (Stored XSS) Lab

Infosec Learning
Virtual Lab

The development of this document is funded by the Boston Area Advanced Technological Education Connections (BATEC) Grant No. NSF-0703097 thru Bunker Hill Community College. Stored XSS can be one of the more devastating types of XSS. Exploitations via this attack result in insertions on server side that execute every time the webpage is visited. In ...

Time
1 hour 30 minutes
Difficulty
Intermediate
Share
Join over 3 million cybersecurity professionals advancing their career
Sign up with
or

Already have an account? Sign In »

Overview

The development of this document is funded by the Boston Area Advanced Technological Education Connections (BATEC) Grant No. NSF-0703097 thru Bunker Hill Community College.

Stored XSS can be one of the more devastating types of XSS. Exploitations via this attack result in insertions on server side that execute every time the webpage is visited. In this lab, we will demonstrate session stealing through a stored XSS attack.