XSS presentation
Cross-site scripting: What it is and how we got here
Watch the presentation on YouTube.
Links:
- History of the web
- Demo: CSS and JavaScript
- Demo: Vulnerable comment page
- The MySpace worm (samy is my hero)
- Self-retweeting tweet
- The tweet
- ZDNet article
- Tom Scott's explanatory video (really good!)
- More sites hit by XSS attacks
- Interactive demo
- Preventing XSS
- Further reading
- XSS on Wikipedia (general audience)
- XSS on OWASP (more technical)
- Troy Hunt's blog
These slides and demos are licensed under a Creative Commons Attribution 4.0 International License.