XSS Survival Guide

Identify, prevent and remediate XSS attacks, enhancing the security of your web applications.

Join The Networkchuck ACADEMY

Unlock this course, plus access our library of 20+ courses and 1,200
lessons ($199 value) by joining as an Academy Member for $12/month today.

1. 2. What is XSS?
2. Quiz 1: What is XSS
1. 3. HTML Context
2. 4. Labs: HTML Context
3. 5. HTML Comment Context
4. 6. Labs: HTML Comment
5. 7. HTML Tag Attribute Injection
6. 8. Labs: HTML Tag Attribute Injection
7. 9. JS Injection
8. 10. Labs: JS Injection
1. 11. Reflected XSS
2. 12. Labs: GET Reflected XSS
1. 13. Stored XSS
2. Practice Test 1: Stored XSS
1. 14. XSS Filter Evasion Techniques
1. 15. VB XSS
1. 16. DOM XSS
1. 17. Labs link
2. 18.php
3. 19. 12
4. 20. 13
5. 21. 14
6. 22. 15
7. 23. 16
8. 24. 17
9. 25.20
10. 26. 21
11. 27. 22
12. 28. 23
13. 29. 24
14. 30. 25
15. 31. 27
16. 32. 30
17. 33. 31
18. 34. 32
19. 35. 33
20. 36. 34
21. 37. 35
22. 38. 36
1. 39. What is CSP?
2. 40. CSP Labs
3. 41. CSP Labs solution
4. Assignment 1: Let's build some CSP
1. 42. Advanced XSS Techniques
1. 43. WAF evasion
1. 44. CSS XSS
1. 45. Analyzing JS files
1. 46. XSS Cheat Sheet
1. Assignment 2: Let's take what we learned into practice
2. Labs: Reflected POST XSS
3. Labs: Reflected GET XSS
4. Basic XSS Filter bypasses
1. 47. The anatomy of an XSS attack vector
2. 48. Hacktivity explained
3. 49. XSS Via reflected canonical tags on the portswigger labs
4. 50. XSS passive testing methodology demonstrated
5. 51. XSS CSP Bypass
6. 52. HTML5 XSS attack vectors explained
7. 53. XSS Tag and event filter evasion techniques with burp suite
8. 54. XSS through Iframe injection