Completed
Demo
Class Central Classrooms beta
YouTube videos curated by Class Central.
Classroom Contents
Client-Side Protection Against DOM-Based XSS Done Right
Automatically move to the next video in the Classroom when playback concludes
- 1 Introduction
- 2 Overview
- 3 Slides
- 4 Same Origin Policy
- 5 XSS vulnerability
- 6 XSS Types
- 7 What is DOMBase
- 8 How to stop XS attacks
- 9 Clients XSS
- 10 Automated expert generator
- 11 Alexa top 10000 domains
- 12 Disabling the XSS auditor
- 13 Testing the XSS auditor
- 14 Crosssite scripting attack
- 15 Inline scripts
- 16 Attributes
- 17 External Content
- 18 Preventing the XSS Auditor
- 19 Performance
- 20 Avoiding invocation
- 21 String matching issues
- 22 Partial injections
- 23 Trailing content
- 24 Demo
- 25 Solution
- 26 Example
- 27 False Negatives
- 28 False Positives
- 29 Performance Results
- 30 Conclusion