Welcome,
New User!
New User!
XSS Attacks
By: Seth Fogie , Jeremiah GrossmanImprint: Syngress
Format: Adobe Encrypted (DRM)
Earn $0.50 - Write a Review »
Our Price
$56.14
Reward Money:
$0.00
Cross Site Scripting Attacks starts by defining the terms and laying out the ground work. It assumes that the reader is familiar with basic web programming (HTML) and JavaScript. First it discusses the concepts, methodology, and technology that makes XSS a valid concern. It then moves into the various types of XSS attacks, how they are implemented, used, and abused. After XSS is thoroughly explored, the next part provides examples of XSS malware and demonstrates real cases where XSS is a dangerous risk that exposes internet users to remote access, sensitive data theft, and monetary losses. Finally, the book closes by examining the ways developers can avoid XSS vulnerabilities in their web applications, and how users can avoid becoming a victim. The audience is web developers, security practitioners, and managers.
*XSS Vulnerabilities exist in 8 out of 10 Web sites
*The authors of this book are the undisputed industry leading authorities
*Contains independent, bleeding edge research, code listings and exploits that can not be found anywhere else
See more like this in our Computers eBooks section
Share your thoughts on the XSS Attacks Computers eBook with others!
| Title of Computers eBook: XSS Attacks | |
| Release Date: 05-09-2007 | |
| Publisher: Syngress |
This eBook download is available in the following formats:
| Parent title | XSS Attacks |
|---|---|
| Encrypted (DRM) | Yes |
| SKU | 9780080553405 |
| File size | 26399 |
| Security | n/a |
| Printing | Not allowed |
| Copying | Not allowed |
| Read aloud | No Sys requirements Download reader |
| Devices | Samsung Tablet, Apple Ipad & Iphone, Barnes & Noble Nook, Kobo eReader, Aluratek Libre, Iliad, Nokia, Blackberry, Hanlin |
| Note | Excellent navigation features are available via Adobe such as bookmarks and a quick access table of contents. Text search is easily accessible. An Adobe DRM-protected file is different than a pdf file in that it uses Adobe DRM (Digital Rights Management) technology, which authors and publishers use to protect their content from illegal online distribution and to set certain privileges such as restrictions on copying and printing. |
XSS Attacks
Chapter One
Cross-site Scripting Fundamentals
Solutions in this chapter:
* History of Cross-site Scripting * Web Application Security * XML and AJAX Introduction [ ] Summary [ ] Solutions Fast Track [ ] Frequently Asked Questions
Introduction
Cross-site scripting vulnerabilities date back to 1996 during the early days of the World Wide Web (Web). A time when e-commerce began to take off, the bubble days of Netscape, Yahoo, and the obnoxious blink tag. When thousands of Web pages were under construction, littered with the little yellow street signs, and the "cool" Web sites used Hypertext Markup Language (HTML) Frames. The JavaScript programming language hit the scene, an unknown harbinger of cross-site scripting, which changed the Web application security landscape forever. JavaScript enabled Web developers to create interactive Web page effects including image rollovers, floating menus, and the despised pop-up window. Unimpressive by today's Asynchronous JavaScript and XML (AJAX) application standards, but hackers soon discovered a new unexplored world of possibility.
Hackers found that when unsuspecting users visited their Web pages they could forcibly load any Web site (bank, auction, store, Web mail, and so on) into an HTML Frame within the same browser window. Then using JavaScript, they could cross the boundary between the two Web sites, and read from one frame into the other. They were able to pilfer usernames and passwords typed into HTML Forms, steal cookies, or compromise any confidential information on the screen. The media repo
...
