Oct 11, 2021
1 min read
Analysis of XSS(Cross Site Scripting)
What is XSS?
XSS(Cross Site Scripting) is a vulnerability in which an attacker can execute arbitrary javascript on the vulnerable application. XSS remains on in OWASP(Open Web Application Security Project) TOP 10 list in 2007, 2010, 2013 & 2017.
Types of XSS
XSS(Cross Site Scripting) has four different types such as Reflected XSS, Stored XSS, Dom XSS, and Blind XSS.
Fig: Different types of XSS(Cross Site Scripting)
Prerequisite
JS(Javascript) & HTML (Hyper Text Markup Language)
Resource
To learn more & practice about XSS(Cross Site Scripting) please refer to the following resources:
- https://brutelogic.com.br/blog
- https://portswigger.net/web-security/all-labs
- http://www.securityidiots.com/Web-Pentest/XSS/xss.series-by-securityidiots.html
- The Web Application Hackers Handbook By Marcus Pinto & Dafydd Stuttard Chapter 13
- Bug Bounty Boot Camp By Vickie Li Chapter Six
- https://blog.detectify.com/2016/05/13/owasp-top-10-cross-site-scripting-3/
- https://tryhackme.com/room/owaspjuiceshop
