View stunning SlideShares in full-screen with the new iOS app!Introducing SlideShare for AndroidExplore all your favorite topics in the SlideShare appGet the SlideShare app to Save for Later — even offline
View stunning SlideShares in full-screen with the new Android app!View stunning SlideShares in full-screen with the new iOS app!
Cyber threats have certainly changed since Al Gore invented the internet.
What started off as an innocuous invention by ARPANET and supported by the U.S. Department of Defense, is now a significant vehicle for conducting business, shopping, banking, researching, communicating, and maintaining vital corporate information
Unfortunately it’s also a haven for hackers and intrusive malicious code.
Allows code injection by malicious web users into the web pages viewed by other users.
Root cause - lack of input filtering and validation
Permits attacker to execute arbitrary scripts on the browser
Yahoo's HotJobs site vulnerable to cross-site scripting attack Dan Kaplan - October 27 2008
"The GIAC certification has enabled me to take the next step in my Information Security career. It allowed me to prove that my value was more than just that of a security minded Sys Admin."
J. Klein, Enterprise Information Systems, Cedars-Sinai Medical Center
"The SANS hands-on experience and the intensive GIAC certification process has garnered me the respect of my boss and peers. Now, when I speak, people listen. I have the confidence to get the job done. My boss looks at me with respect that simply wasn't there before SANS training and GIAC certification. Not only my boss, but managers and peers at other large organizations.“ Matt Carpenter, Enterprise Information Systems
GIAC certifications help IT Security Professionals get promoted faster and earn more money…