JavaScript injection - XSS

Speaker Kęstutis Parchutikas  
Language LT
Stage Digital
Type Presentation
Description

  1. XSS - Cross site scripting: XSS intro. XSS types: reflected, stored, dom (self). Alert box & harlem shake

  2. Beef - The Browser Exploitation Framework: Beef intro. XSS and Beef phishing. Beef and Metasploit.

  3. Cookies vs passwords: Stealing cookies via XSS. Stealing passwords via XSS.

  4. XSS mitigations