Client-Side Protection Against DOM-Based XSS Done Right

Client-Side Protection Against DOM-Based XSS Done Right

OWASP Foundation via YouTube Direct link

Demo

24 of 30

24 of 30

Demo

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

Client-Side Protection Against DOM-Based XSS Done Right

Automatically move to the next video in the Classroom when playback concludes

  1. 1 Introduction
  2. 2 Overview
  3. 3 Slides
  4. 4 Same Origin Policy
  5. 5 XSS vulnerability
  6. 6 XSS Types
  7. 7 What is DOMBase
  8. 8 How to stop XS attacks
  9. 9 Clients XSS
  10. 10 Automated expert generator
  11. 11 Alexa top 10000 domains
  12. 12 Disabling the XSS auditor
  13. 13 Testing the XSS auditor
  14. 14 Crosssite scripting attack
  15. 15 Inline scripts
  16. 16 Attributes
  17. 17 External Content
  18. 18 Preventing the XSS Auditor
  19. 19 Performance
  20. 20 Avoiding invocation
  21. 21 String matching issues
  22. 22 Partial injections
  23. 23 Trailing content
  24. 24 Demo
  25. 25 Solution
  26. 26 Example
  27. 27 False Negatives
  28. 28 False Positives
  29. 29 Performance Results
  30. 30 Conclusion

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.