Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Modern XSS Defense Strategies - Frameworks, CSP, and Sanitization

OWASP Foundation via YouTube

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore the evolving landscape of Cross-Site Scripting (XSS) defense in this 41-minute conference talk from OWASP AppSec EU 2018. Delve into modern defensive strategies, including JavaScript framework defenses in Angular and React, and examine the progression of Content Security Policy (CSP) deployment across versions 1, 2, and 3. Learn about advancements in HTML sanitization techniques for both client and server-side applications, focusing on robust sanitizers and defensive libraries. Investigate critical design considerations, such as the ongoing importance of HTML injection prevention and the limitations of HTTPOnly cookies. Gain valuable insights to develop a focused, up-to-date strategy for defending against XSS in contemporary applications, beneficial for both developers and security professionals.

Syllabus

The Last XSS Defense Talk: Why XSS Defense has radically changed in the past 7 years - Jim Manico

Taught by

OWASP Foundation

Reviews

Start your review of Modern XSS Defense Strategies - Frameworks, CSP, and Sanitization

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.