Course Description

Cross Site Scripting is one of the most common security flaws found in web applications. This course will provide an introduction to the vulnerability and recommendations on how to protect against it.

This course focuses on ensuring that you will have a solid understanding of cross site scripting and how it affects your applications and business.

On this journey, we will walk through what cross site scripting is. We will then take a look at different aspects of mitigating cross site scripting and potential limitations to each one.

After completing this journey, you should have a solid understanding of cross site scripting and feel comfortable addressing it.

Application Security Professional James Jardine

James Jardine is the CEO of Jardine Software Inc. He started is career as a developer, working on all types of projects across web, mobile, and desktop. James has spent the last 10 years focusing on application security. His over 20 years of combined experience provides a unique insight into both development and security for applications. James has presented and trained at Derbycon, Blackhat, Infosecworld, Hacker Halted and many others. He was previously an author and instructor at the SANS Institute where he taught the Secure Coding in .Net course.

Course curriculum

    1. Quick Intro to Cross-Site Scripting

      FREE PREVIEW

    2. Introduction to Injection Attacks

    3. Untrusted Data

    4. Cross-Site Scripting in Detail

    5. Demo - Cross-Site Scripting

    6. Walkthrough - Output Encoding

    7. Walkthrough - Content Security Policy

    8. Walkthrough - X-XSS-PROTECTION Header

    9. Walkthrough - Attribute XSS

    10. Walkthrough - BeEF

    11. Knowledge Check

About this course

  • $29.99
  • 11 lessons
  • 1.5 hours of video content