eXential XSS (Cross Site Scripting)

XSS or Cross Site Scripting is a common type of attack where malicious blocks of script are injected into trusting websites that will then be executed in a users browser.

Security

Web

XSS attacks have been around for a long time now but many developers still don't understand what they are, how to prevent them and how devastating they can be - especially when chained with other types of attack. In this preso we'll take you through the basics, show the different types of XSS attacks and the numerous ways they can occur, demonstrate how to protect your own sites and applications before showing a theoretical example of how XSS could be leveraged to completely compromise an application and server.

Alex Mackey

Experienced technologist, author and speaker with over 21 years’ experience in various software development focussed roles. Works as a Tech Lead for Willow where we focus on development of digital twins and currently focussed on application security. Alex co-founded DDD Melbourne, has written two .NET books for Apress, spoken at several large conferences including NDC Sydney & Oslo, TechEd/Ignite, Web Directions and Remix and developed courses for online training provider Pluralsight and A Cloud Guru.

NDC { Melbourne }

eXential XSS (Cross Site Scripting)

Alex Mackey