Security in the World of JS Frameworks

Security in the World of JS Frameworks

JSConf via YouTube Direct link

Forcing evil ng-includes

8 of 12

8 of 12

Forcing evil ng-includes

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

Security in the World of JS Frameworks

Automatically move to the next video in the Classroom when playback concludes

  1. 1 Intro
  2. 2 Client security
  3. 3 Traditional XSS in JS code: execution sinks
  4. 4 The times have changed
  5. 5 Lightning-fast Introduction to Angular
  6. 6 Mixing Angular and server-side templates
  7. 7 Modifying the Angular DOM
  8. 8 Forcing evil ng-includes
  9. 9 $http.jsonp() on evil URL
  10. 10 XSS #5.2: Scary jQlite functions: html() & friends
  11. 11 Angular "special" functions
  12. 12 Opting into dangerous modes

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.