Sunday, 3 May 2009

An interesting paper by p3lo concerning the new XSS vectors, javascript malware obfuscation , url cache poisoning, packing, frame jacking techniques etc..  

Thursday, 16 April 2009

An interesting article about an xss vulnerability in a theme that was installed on wordpress.com.

Monday, 19 January 2009

How to write a XSS (cross site scripting) worm for McCodes sites

Sunday, 6 July 2008

(IN)SECURE Magazine Issue 17, includes Russ's article about open redirect vulnerabilities. Covers them in detail by providing info on real-world examples, prevention solutions and the relation with PCI-DSS standards.

Monday, 23 June 2008

In this tutorial paper, Gerasimos describes in full detail how to perform  an XSS filter invasion and run his JavaScript key logger in order to steal user names, passwords and user credentials.

Monday, 23 June 2008

In this tutorial paper, Gerasimos Kassaras provides useful insight into how to defend against cross-site scripting with .NET.

1 2 3 4 5