Benedek Gagyi - XXSS: Exotic Cross-Site Scripting vectors | Øredev 2019
XSS is one of the most well known attacks on the web, perhaps second only to SQL injection. While the general idea behind it is relatively simple, due to the colorfulness of the web and the quirks of the browsers it has a surprising depth to it. In this talk we'll journey deep down the rabbit hole of XSS attacks and take a look at all the weird ways malicious inputs may hurt our users, from the non-JS based injections (CSS, HTML, image) through mXSS, up to blind XSS.
Connect with us!
Twitter: / oredev
Facebook: / oredev
Instagram: / oredev
Vimeo: https://vimeo.com/oredev
