| Date |
Type |
Title |
Author |
Event |
| April 01, 2012 |
Audio |
New Ways I'm Going to Hack Your Web App
|
Jesse Ou
Rich Lundeen
Travis Rhodes
|
Chaos Communication Congress 28th (28C3) 2011 |
| April 01, 2012 |
Slides |
New Ways I'm Going to Hack Your Web App
|
Jesse Ou
Rich Lundeen
Travis Rhodes
|
Chaos Communication Congress 28th (28C3) 2011 |
| April 01, 2012 |
Video |
New Ways I'm Going to Hack Your Web App
|
Jesse Ou
Rich Lundeen
Travis Rhodes
|
Chaos Communication Congress 28th (28C3) 2011 |
| March 19, 2012 |
Video |
Rootkits in your Web application
|
Artur Janc
|
Chaos Communication Congress 28th (28C3) 2011 |
| March 18, 2012 |
Slides |
Rootkits in your Web application
|
Artur Janc
|
Chaos Communication Congress 28th (28C3) 2011 |
| March 18, 2012 |
Audio |
Rootkits in your Web application
|
Artur Janc
|
Chaos Communication Congress 28th (28C3) 2011 |
| February 04, 2012 |
Slides |
New Ways I'm Going to Hack Your Web App
|
Jesse Ou
Rich Lundeen
|
Black Hat Abu Dhabi 2011 |
| February 04, 2012 |
Paper |
New Ways I'm Going to Hack Your Web App
|
Jesse Ou
Rich Lundeen
|
Black Hat Abu Dhabi 2011 |
| January 01, 2012 |
Slides |
Six Degrees of XSSploitation
|
Dan Moniz
|
Black Hat Asia 2006 |
| September 22, 2011 |
Paper |
Hacking Browser's DOM - Exploiting Ajax and RIA
|
Shreeraj Shah
|
Black Hat USA 2010 |
| September 22, 2011 |
Slides |
Hacking Browser's DOM - Exploiting Ajax and RIA
|
Shreeraj Shah
|
Black Hat USA 2010 |
| July 19, 2011 |
Paper |
Kicking Down the Cross Domain Door (One XSS at a Time)
|
Billy Rios
Raghav Dube
|
Black Hat EU 2007 |
| July 19, 2011 |
Slides |
Kicking Down the Cross Domain Door (One XSS at a Time)
|
Billy Rios
Raghav Dube
|
Black Hat EU 2007 |
| April 16, 2011 |
Paper |
Attacking with HTML5
|
Lavakumar Kuppan
|
Black Hat Abu Dhabi 2010 |
| April 16, 2011 |
Slides |
Attacking with HTML5
|
Lavakumar Kuppan
|
Black Hat Abu Dhabi 2010 |
| April 11, 2011 |
Paper |
XSS Street-Fight: The Only Rule Is There Are No Rules
|
Ryan C. Barnett
|
Black Hat DC 2011 |
| April 11, 2011 |
Slides |
XSS Street-Fight: The Only Rule Is There Are No Rules
|
Ryan C. Barnett
|
Black Hat DC 2011 |
| November 30, 2010 |
Video |
How I Met Your Girlfriend
|
Samy Kamkar
|
SecTor 2010 |
| November 30, 2010 |
Slides |
How I Met Your Girlfriend
|
Samy Kamkar
|
SecTor 2010 |
| November 08, 2010 |
Slides |
HTML Binary Hacks 2008 YATTA!
|
|
AVTokyo 2008 |
| November 08, 2010 |
Slides |
XSS worm intermediate the Flash
|
Daiki Fukumori
|
AVTokyo 2008 |
| October 23, 2010 |
Video |
Is XSS Solveable?
|
Don Ankney
|
LayerOne 2009 |
| October 23, 2010 |
Slides |
Is XSS Solveable?
|
Don Ankney
|
LayerOne 2009 |
| October 10, 2010 |
Audio |
The Presence and Future of Web Attacks Multi-Layer Attacks and XSSQLI
|
Mario Heiderich
|
Confidence 2010 Krakow |
| October 10, 2010 |
Video |
The Presence and Future of Web Attacks Multi-Layer Attacks and XSSQLI
|
Mario Heiderich
|
Confidence 2010 Krakow |
| September 24, 2010 |
Slides |
Cross-domain leakiness
|
Billy Rios
Chris Evans
|
Hack In The Box 2009 Dubai |
| August 31, 2010 |
Audio |
XSS Anonymous Browser
|
Matthew Flick
|
Black Hat DC 2009 |
| August 31, 2010 |
Video |
XSS Anonymous Browser
|
Matthew Flick
|
Black Hat DC 2009 |
| July 19, 2010 |
Audio |
The Internet is Broken: Beyond Document.Cookie - Extreme Client Side Exploitation
|
Nathan McFeters
John Heasman
Rob Carter
|
Black Hat USA 2008 |
| July 19, 2010 |
Slides |
The Internet is Broken: Beyond Document.Cookie - Extreme Client Side Exploitation
|
Nathan McFeters
John Heasman
Rob Carter
|
Black Hat USA 2008 |
| July 19, 2010 |
Video |
The Internet is Broken: Beyond Document.Cookie - Extreme Client Side Exploitation
|
Nathan McFeters
John Heasman
Rob Carter
|
Black Hat USA 2008 |
| June 21, 2010 |
Video |
Next Generation Clickjacking
|
Paul Stone
|
Black Hat EU 2010 |
| June 21, 2010 |
Slides |
Next Generation Clickjacking
|
Paul Stone
|
Black Hat EU 2010 |
| June 20, 2010 |
Slides |
Universal XSS via IE8s XSS Filters
|
Eduardo Vela Nava
David Lindsay
|
Black Hat EU 2010 |
| May 09, 2010 |
Video |
Cross Site Scripting Anonymous Browser 2.0
|
Jeff Yestrumskas
Matt Flick
|
DEFCON 17 |
| May 09, 2010 |
Slides |
Cross Site Scripting Anonymous Browser 2.0
|
Jeff Yestrumskas
Matt Flick
|
DEFCON 17 |
| May 09, 2010 |
Audio |
Cross Site Scripting Anonymous Browser 2.0
|
Jeff Yestrumskas
Matt Flick
|
DEFCON 17 |
| April 13, 2010 |
Video |
Weaponizing the Web: New Attacks on User-generated Content
|
Shawn Moyer
Nathan Hamiel
|
DEFCON 17 |
| April 13, 2010 |
Audio |
Weaponizing the Web: New Attacks on User-generated Content
|
Shawn Moyer
Nathan Hamiel
|
DEFCON 17 |
| February 18, 2010 |
Slides |
XSS Lightsabre techniques using Hackvertor
|
Gareth Heyes
|
Confidence 2009 Warszawa |
| November 20, 2009 |
Audio |
Xploiting Google Gadgets: Gmalware and Beyond
|
Tom Stracener
Robert 'Rsnake' Hansen
|
DEFCON 16 |
| November 04, 2009 |
Audio |
CSRF Bouncing
|
Michael Brooks
|
DEFCON 16 |
| October 28, 2009 |
Slides |
Advanced Cross Site Scripting Exploitation
|
Tiago Ferreira
|
Digital Security Forum - 2nd |
| October 28, 2009 |
Slides |
Reducing XSS by way of Automatic Context-Aware Escaping in Template System
|
Filipe Almeida
|
Digital Security Forum - 2nd |
| September 30, 2009 |
Slides |
Our Favorite XSS Filters and How to Attack Them
|
Eduardo Vela Nava
David Lindsay
|
Black Hat USA 2009 |
| July 11, 2009 |
Slides |
PHP Security Crash Course for beginners: Part II - XSS
|
Stefan Esser
|
|
| June 20, 2009 |
Slides |
Application Injections - Exploiting SQL, XSS & XPATH
|
Shreeraj Shah
|
Confidence 2009 Krakow |
| May 27, 2009 |
Slides |
OWASP AntiSamy - Picking a fight with XSS
|
|
ShmooCon 2009 |
| May 18, 2009 |
Video |
Client-side Security
|
Petko d. Petkov
|
Confidence 2008 |
| May 18, 2009 |
Slides |
Client-side Security
|
Petko d. Petkov
|
Confidence 2008 |
| April 22, 2009 |
Slides |
Blackbox Reversing Of XSS Filters
|
Alexander Sotirov
|
REcon 2008 |
| April 22, 2009 |
Video |
Blackbox Reversing Of XSS Filters
|
Alexander Sotirov
|
REcon 2008 |
| April 11, 2009 |
Video |
Xploiting Google Gadgets: Gmalware and Beyond
|
Tom Stracener
Robert 'Rsnake' Hansen
|
DEFCON 16 |
| April 11, 2009 |
Slides |
Xploiting Google Gadgets: Gmalware and Beyond
|
Tom Stracener
|
DEFCON 16 |
| March 15, 2009 |
Video |
CSRF Bouncing
|
Michael Brooks
|
DEFCON 16 |
| March 15, 2009 |
Slides |
CSRF Bouncing
|
Michael Brooks
|
DEFCON 16 |
| February 19, 2009 |
Slides |
XSS Anonymous Browser
|
Matthew Flick
|
Black Hat DC 2009 |
| February 19, 2009 |
Paper |
XSS Anonymous Browser
|
Matthew Flick
|
Black Hat DC 2009 |
| January 22, 2009 |
Slides |
Browser Rider: Your way to Fun Browsing
|
Ben Mosse
|
Ruxcon 2008 |
| November 08, 2008 |
Paper |
Protecting a Web Application Against Attacks Through HTML Shared Files
|
Francisco Corella
|
|
| October 10, 2008 |
Slides |
Security Testing with Selenium
|
Vidar Kongsli
|
|
| September 03, 2008 |
Paper |
Bypassing ASP.NET
"ValidateRequest” for Script Injection Attacks
|
Richard Brain
|
|
| July 13, 2008 |
Slides |
Web Portals Gateway To Information Or A Hole In Our Perimeter Defenses
|
|
Shmoocon 2008 |
| June 19, 2008 |
Paper |
The Extended HTML Form attack revisited
|
|
|
| June 13, 2008 |
Paper |
Cross Site Tracing (XST)
|
Jeremiah Grossman
|
|
Tag: XSS
or on facebook 
top