ไม่สามารถเล่นวิดีโอนี้
ขออภัยในความไม่สะดวก
What is XSS? | Understanding Cross-Site Scripting | XSS Explained
ฝัง
- เผยแพร่เมื่อ 3 ส.ค. 2024
- #xss #cross_site_scripting #xss_attacks #xss_protection
Understanding Cross-Site Scripting is important for web developers, aspiring security engineers, and Internet users in general. XSS is one of the most common threats on the web. Cross-site Scripting allows attackers to penetrate vulnerable systems and perform malicious actions, such as stealing data, hijacking sessions, etc.
In this video, I explain Cross-Site Scripting by starting with a general explanation of injection attacks. You’ll understand what are they and how they are possible. You'll also learn what an XSS attack is and how it is performed. Types of XSS attacks and ways to protect against them are addressed as well.
-------- Video Outline --------
00:00 Vulnerable Systems and Security Threats
00:38 Example of XSS attack - Stored XSS
02:25 Injection Attacks
02:41 Injection Attacks - SQL Injection
03:20 Client-Side Injection Attacks - Cross-Site Scripting
04:40 How XSS attacks work
05:31 Types of XSS attacks & Protection measures
05:53 Stored XSS Attacks
07:40 Reflected XSS Attacks
08:50 DOM-based XSS Attacks
09:23 Mutation-Based Attacks
Resources to know more:
* portswigger.net/web-security/...
* owasp.org/www-community/attac...
* developer.mozilla.org/en-US/d...
Check out more of The TechCave Videos:
* • What is CORS? | Cross-... - CORS | Cross-Origin Resource Sharing
* • The Http and the Web |... - HTTP and The Web
* • APIs | REST | REST API... - REST APIs
* • What is DevOps | Under... - DevOps
* • Web Services - Demysti... - Web Services
* • Software Architecture ... - Software Architecture
Artwork and Illustration: Flaticon.com
Stay Tuned!
This is a fantastic explanation of XSS! Thank you so much TechCave!!!
I bet this is the best explanation video of XSS in TH-cam ❤️
That was very helpful, thank you so much!!
Thank you for the valuable explanation!
Great work!🔥
thank you so much for the amazing video!! Also, just noticed smth... at 5:49 there's a small thing.. its written as refected instead of reflected.. just thought of informing
You are really really good at explaining stuff, thank you for the video
Glad you found it helpful! Thank you for the kind words!
Great video.
for basic to prevent script tags in text from executing at client side,
u must treat it as text and don't use it to set innerHTML property use textContent or innerText instead
Can we get those PPT Slides 🙃
How do I convert html control to entity encoding
Testing
Auto repair work BMW cars