Part 1 Intro

Video Activity

This lesson introduces the course agenda which will cover: *definition, case study and sample code *Demonstrations of reflected cross site scripting (XSS), reflected XSS via JavaScript context, stored XSS via web log attack *mitigation, countermeasures, defenses lab and lab solution

Join over 3 million cybersecurity professionals advancing their career

Sign up with

or

Already have an account? Sign In »

Course

Time

9 hours 31 minutes

Difficulty

Intermediate

CEU/CPE

10

Video Description

This lesson introduces the course agenda which will cover: *definition, case study and sample code *Demonstrations of reflected cross site scripting (XSS), reflected XSS via JavaScript context, stored XSS via web log attack *mitigation, countermeasures, defenses lab and lab solution

Video Transcription

00:04

Hello and welcome to the side. Very secure coding course my name Miss anywhere. And this is AWAS top 10 for 2013.

00:14

This is a three cross site scripting.

00:18

Now for a cross site scripting module. We are going to go through the definition of cross site scripting as well as look at the various types.

00:28

We're also going to take a look at some sample code along with the case study.

00:34

Now, the three demos that we're gonna go through include reflected cross site scripting. Your basic reflected cross site scripting example

00:44

reflected cross site scripting via Java script context.

00:49

And then, finally, our most advanced demo, which is stored cross site scripting via a Web log attack.

00:59

Now we're gonna follow up with mitigations, countermeasures and defenses,

01:03

and then we'll round off the module with our lab and lab solutions.

Up Next

Part 2 Explanations

Part 3 Reflected XSS HTML context Demo

Part 4 Reflected XSS JS context Demo

Part 5 Stored Demo

Part 6 Defenses

Secure Coding

In the Secure Coding training course, Sunny Wear will show you how secure coding is important when it comes to lowering risk and vulnerabilities. Learn about XSS, Direct Object Reference, Data Exposure, Buffer Overflows, & Resource Management.

Instructed By

Similar Content

OWASP

Established in 2001, the Open Web Application Security Project (OWASP) offers free security tools and ...

12 CEU/CPE Hours Available

Certificate of Completion Offered

Python Coding - Basic

Python Coding - Basic

The Python Coding - Basic test is a premium Cybrary assessment test created by Interview ...

Interview Mocha

Intro to Python

Intro to Python

This is an introductory course on Python for cyber security, giving students the ability to ...

3 CEU/CPE Hours Available

Certificate of Completion Offered