Good material on Malicious Javascript, etc

General (Technical, Procedural, Software, Hardware etc.)

Last Post by digintel 16 years ago

2 Posts

2 Users

0 Reactions

369 Views

RSS

jakeaw03

(@jakeaw03)

Trusted Member

Joined: 17 years ago

Posts: 65

Topic starter 26/07/2009 7:46 pm

Hello,

I am looking for some good articles or books to learn more about malicious web activity, such as malicious javascript, use of iFrames, XSS. Has anyone come across some good materiel? I am tried of wading through the numerous hits on Google and want to go right to the source.

Thanks

Quote

digintel

(@digintel)

Trusted Member

Joined: 17 years ago

Posts: 51

27/07/2009 6:14 am

Hello,

I am looking for some good articles or books to learn more about malicious web activity, such as malicious javascript, use of iFrames, XSS. Has anyone come across some good materiel? I am tried of wading through the numerous hits on Google and want to go right to the source.

Thanks

There's not one source for these kind of things. I find the best thing to do is read the right forums, blogs, and (to a lesser extend) books.

Some basic sources
http//www.cgisecurity.com/xss-faq.html - XSS FAQ, good introduction
http//ha.ckers.org/xss.html - XSS cheatsheet, not fully up to date, but quite interesting read
http//www.owasp.org/index.php/XSS_%28Cross_Site_Scripting%29_Prevention_Cheat_Sheet - XSS prevention cheatsheet, quite detailed explanation of XSS attacks

Good book
XSS Attacks Cross Site Scripting Exploits and Defense,
published by Syngress
(big book, paperback, and as far as I know the only book written specifically on XSS attacks).
Good for beginners, experts and people who are obsessed with acronyms.

Roland

ReplyQuote

8 Forums
15.7 K Topics
92.3 K Posts
240 Online
41.1 K Members

Forum Icons: Forum contains no unread posts Forum contains unread posts

Topic Icons: Not Replied Replied Active Hot Sticky Unapproved Solved Private Closed