OWASP Top 10: A7 - Cross-site Scripting

OWASP 2021    |    Intermediate
  • 7 videos | 36m 24s
  • Includes Assessment
  • Earns a Badge
Likes 23 Likes 23
Most web apps accept some kind of input, whether from users or through other automated means. All app input must be treated as untrusted and must be vigorously validated to ensure application and data integrity. In this course, you'll learn the difference between Java and JavaScript, as well as what cross-site scripting is and how it can compromise a web site and its visitors. Next, you'll learn how to execute various XSS attacks against an intentionally vulnerable virtual machine, including through web forms. You'll also explore how to use XSS to hijack a user web browser and how to mitigate XSS attacks.

WHAT YOU WILL LEARN

  • discover the key concepts covered in this course
    describe how Java and JavaScript are used in web applications
    recognize how Cross-site Scripting (XSS) attacks occur
    run a XSS attack through web page forms
  • run a XSS attack to hijack a client web browser
    deploy security controls to mitigate XSS attacks
    summarize the key concepts covered in this course

IN THIS COURSE

EARN A DIGITAL BADGE WHEN YOU COMPLETE THIS COURSE

Skillsoft is providing you the opportunity to earn a digital badge upon successful completion on some of our courses, which can be shared on any social network or business platform.

Digital badges are yours to keep, forever.

YOU MIGHT ALSO LIKE

Course OWASP Top 10: A09:2021-Security Logging & Monitoring Failures
Course OWASP Top 10: A05:2021-Security Misconfiguration
Course OWASP Top 10: A04:2021-Insecure Design

PEOPLE WHO VIEWED THIS ALSO VIEWED THESE

Course OWASP Top 10: A3 - Sensitive Data Exposure
Likes 19 Likes 19  
Course OWASP Top 10: A10 - Insufficient Logging & Monitoring
Likes 19 Likes 19  
Course CISSP: Software Development Security
Likes 190 Likes 190