「XSS」に関連した動画の一覧 |
 | XSS Cross Site Scripting Demonstration Cross-site scripting ('XSS' or 'CSS') is an attack that takes advantage of a Web site vulnerability in which the site displays content that includes un-sanitized user-provided data. For example, an attacker might place a hyperlink with an embedded malicious script into an online discussion forum. That purpose of the malicious script is to attack other forum users who happen to select the hyperlink. For example it could copy user cookies and then send those cookies to the attacker. The Script Injection video should be watched before this video for greater understanding. 2009年07月02日再生回数 40824 |
 | PHP Tutorials: Security - XSS (Cross-site scripting) Protect against injecting of client-side scripts (such as JavaScript) on your website. XSS affects any user-defined data that is output anywhere on your site. Official website phpacademy.org Support Forum http Follow us on Twitter! twitter.com 2011年08月14日再生回数 10964 |
 | IEFD Ep. 13 - Website Hacking - XSS part 1 In this episode of Full Disclosure we are explaining the website attack known as Cross-Site Scripting (XSS). Cross-Site Scripting is a type of security vulnerability that affects web applications that do not sanitize user input properly. This kind of vulnerability allows an "attacker" to inject HTML or client side script like JavaScript into the website. Cross-Site Scripting is most commonly used to steal cookies. Cookies are used for authenticating, tracking, and maintaining specific information about users; therefore, by stealing a user's cookies an attacker could bypass the website's access control. There are three types of XSS attacks: Persistent, Non-Persistent, and DOM-Based. In this episode we will cover Persistent and Non-Persistent Cross-Site Scripting attacks. Part 1 of 2 www.InfinityExists.com 2007年12月10日再生回数 113201 |
 | What is Cross-site Scripting (XSS) In this video tutorial I demonstrate what an XSS attack (Cross-site scripting attack) is to show you how a hacker can use XSS vulnerabilities to hack into your website. I start the video by explaining the mechanisms of cross site scripting, and I proceed to demonstrate a number of pranks you can play on unsuspecting users. I also demonstrate how cookies can be stolen to hijack sessions and I take a peek into the vulnerable code that allows such attacks. I hope that this video will both entertaining and educational, and that by learning about XSS you can keep your own website safer. The tool used in this video is Acunetix Web Vulnerability Scanner. 2011年09月27日再生回数 6963 |
 | XSS Attacking Tutorial This video is designed to teach people about XSS attacking. A simple XSS attack is used on my own localhost webserver. The XSS attack used steals and stores cookies. Please, do not use this anywhere else other than your own website, as stealing private information is against the law in most places. I am not responsible for any attacks executed by following this tutorial. ==Watch Part 2 here!== www.youtube.com 2011年11月10日再生回数 6958 |
 | OWASP Appsec Tutorial Series - Episode 3: Cross Site Scripting (XSS) The third episode in the OWASP Appsec Tutorial Series. This episode describes the #2 attack on the OWASP top 10 - Cross-Site Scripting (XSS). This episode illustrates three version of an XSS attack: high level, detailed with the script tag, and detailed with no script tag, and then recommends resources for further learning. 2011年07月12日再生回数 41744 |
 | What is Cross-Site Scripting? Veracode co-founder and VP of Research Chris Eng explains Cross-site scripting (XSS), a type of computer security vulnerability typically found in web applications that enables malicious attackers to inject client-side script into web pages viewed by other users. Sign up for a free trial: www.veracode.com 2012年03月03日再生回数 273 |
 | SQL Injection via XSS attack 2012年02月07日再生回数 2801 |
 | How to deface websites by xss.mp4 For more tuts. visit devils-arena.com 2012年02月02日再生回数 941 |
 | XSS in Skype for iOS For more information, see my blog post at superevr.com 2011年09月18日再生回数 74601 |
XSSに関連した本
- Xss 10 Betascript Publishing
- Xss Worm Betascript Publishing
- テニスの王子様 8 (ジャンプ・コミックス) 許斐 剛 集英社