Cross-site scripting explained (video)
Maybe you noticed that recently I was not being writing too much here. But I have an excuse (of course I do have one!): in a meantime I was quite busy by doing different things (e.g. relocating) and also preparing "this-and-that" to the corporate event which took place in London couple of days ago. So now I may proudly present the video I made for this event, which explains what cross-site scripting is. The film is especially good for well... rather less-technical audience. ;-) Actually it's a live scenario of persistent XSS exploitation, so may be quite interesting for you to watch as well.
I also had incredible opportunity to spend couple of days making the intro (last time I was playing with 3d modeling and video editing was... oh my god, probably couple of years ago). So it was definitely good to recall some old (but not forgotten) skills. Anyway have fun! :-) Let me know what do you think about the video and if you have any ideas about the next ones.
More info about the event on the 7Safe's web page: http://penetration-testing.7safe.com/...
Btw, I also recommend you to look through the video prepared for the same event by a colleague of mine running http://commonexploits.com (you've been there already, right). So this is a hacking presentation demonstrating client side exploits, pivot attacks using Metasploit. Really cool stuff.
Recent Posts
- Knowledge sharing event: Risk-based approaches to protecting your data – London, Tuesday 19th April
- Training – Hacking and Securing Oracle Database (11g)
- Changed language does not persist when Skype is restarted: how to solve the annoying issue
- More 3D Fun with Kinect and Delphi. You can grab and save still 3D frames!
- Having Fun with Kinect and Delphi (examples of 2D and 3D visualization)
- Smuggling .NET code inside batch files. Impossible? Who said that?
- Cross-site scripting explained (video)
- Innocent comment regarding sensitive information disclosure…
- Pentesting privilege escalation in web applications
- TinyWeb: Pocket-size Portable Web Server With CGI And PHP Support (!)
Popular
Archives
- April 2011 (2)
- January 2011 (1)
- December 2010 (3)
- October 2010 (1)
- September 2010 (8)
- August 2010 (8)
- July 2010 (8)
- June 2010 (2)
Categories
- .NET (1)
- Binary application security (11)
- Cryptography (2)
- Delphi (12)
- Exploitation practice (16)
- Fun (5)
- Java (1)
- Kinect (2)
- Mobile devices security (1)
- Pentesting (15)
- PHP (2)
- Skype (3)
- SQL (5)
- SQL injection (6)
- Uncategorized (9)
- Windows security (6)
Recent Tweets
- Knowledge sharing event: Risk-based approaches to protecting your data - London, Tuesday 19th April More info here: http://itsecuritylab.eu/
- Training at Blackhat 2011: Hacking and Securing Oracle 11g - highly recommended! More info: http://itsecuritylab.eu/
- Changed language does not persist when Skype is restarted: the solution and example how to manage Skype "remotely": http://itsecuritylab.eu
Affiliated websites
