XSS Lightning talk

1,182 views
1,118 views

Published on

Held at Open Space Århus March 2012

Published in: Education, Technology, Design
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
1,182
On SlideShare
0
From Embeds
0
Number of Embeds
22
Actions
Shares
0
Downloads
2
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

XSS Lightning talk

  1. 1. March 2012Introduction to Cross Site Scripting Lightning talk held at OSAAJohnny Vestergaard <jkv@unixcluster.dk>http://dk.linkedin.com/in/johnnykv
  2. 2. XSS - Cross Site ScriptingWorst name ever??● Think of it as "JavaScript Injection". ○ (and ignore the haters)● Injection of malicious JavaScript on a site with the intend of client side execution.● Three types: Reflected, Persistent and DOM based.● We will focus on Persistent XSS tonight.
  3. 3. Safe website
  4. 4. Vulnerable website
  5. 5. Hey - its just client side!
  6. 6. Having a client side party● Possibilities ○ Host scanning of client-side LAN ○ Session takeover (cookie stealing) ○ Eavesdropping ■ Keylogging ■ Events ○ Complete control of the page● Limitations ○ Confined to the browser
  7. 7. Demo● Keylogger using metasploit● Cookie stealer with python backend
  8. 8. Demo #1 -  Keylogger with metasploit
  9. 9. Demo #2 -  The Cookie Monster https://gist.github.com/1968842
  10. 10. Do it yourselfWhitehat style● Backtrack 5 ○ http://www.backtrack-linux.org/● OWASP Broken Web Applications Project ○ VMware image with broken web apps ○ http://bit.ly/yNsF9K● Cookie Monster ○ http://gist.github.com/1968842● Slides ○ http://www.slideshare.net/JohnnyKV/

×