SlideShare a Scribd company logo

XSS Lightning talk

Johnny Vestergaard
Johnny Vestergaard

This document summarizes a lightning talk on cross-site scripting (XSS) attacks. It defines XSS as the injection of malicious JavaScript onto a website with the intent of client-side execution. There are three main types of XSS attacks: reflected, persistent, and DOM-based. The talk focuses on persistent XSS attacks. It provides examples of how XSS could be used to scan local networks, steal user sessions through cookie theft, and gain complete control of the vulnerable webpage. The document concludes by recommending tools and resources for learning more about conducting white hat XSS testing.

EducationTechnologyDesign
1 of 10
Download to read offline
March 2012 Introduction to Cross Site Scripting  Lightning talk held at OSAA Johnny Vestergaard <jkv@unixcluster.dk> http://dk.linkedin.com/in/johnnykv
XSS - Cross Site Scripting Worst name ever?? ● Think of it as "JavaScript Injection". ○ (and ignore the haters) ● Injection of malicious JavaScript on a site with the intend of client side execution. ● Three types: Reflected, Persistent and DOM based. ● We will focus on Persistent XSS tonight.
Safe website
Vulnerable website
Hey - it's just client side!
Having a client side party ● Possibilities ○ Host scanning of client-side LAN ○ Session takeover (cookie stealing) ○ Eavesdropping ■ Keylogging ■ Events ○ Complete control of the page ● Limitations ○ Confined to the browser
Demo ● Keylogger using metasploit ● Cookie stealer with python backend
Demo #1 -  Keylogger with metasploit
Demo #2 -  The Cookie Monster https://gist.github.com/1968842
Do it yourself Whitehat style ● Backtrack 5 ○ http://www.backtrack-linux.org/ ● OWASP Broken Web Applications Project ○ VMware image with broken web apps ○ http://bit.ly/yNsF9K ● Cookie Monster ○ http://gist.github.com/1968842 ● Slides ○ http://www.slideshare.net/JohnnyKV/

Recommended

Grunt Advanced Vol 2, Plugins Text I/O with fun
Grunt Advanced Vol 2, Plugins Text I/O with funGrunt Advanced Vol 2, Plugins Text I/O with fun
Grunt Advanced Vol 2, Plugins Text I/O with fun
David Amend
 
Xss and sql injection
Xss and sql injectionXss and sql injection
Xss and sql injection
Bhuridech Sudsee
 
Real world blockchains
Real world blockchainsReal world blockchains
Real world blockchains
Dmitry Meshkov
 
Security in PHP Applications: An absolute must!
Security in PHP Applications: An absolute must!Security in PHP Applications: An absolute must!
Security in PHP Applications: An absolute must!
Mark Niebergall
 
Google country day_intervento
Google country day_interventoGoogle country day_intervento
Google country day_intervento
firenze-gtug
 
Blockchain Overview
Blockchain OverviewBlockchain Overview
Blockchain Overview
Eugene Yang
 
Password Managers - Lastpass
Password Managers - LastpassPassword Managers - Lastpass
Password Managers - Lastpass
Bertold Kolics
 
9. blocks - programing bitcoin
9. blocks - programing bitcoin9. blocks - programing bitcoin
9. blocks - programing bitcoin
Harry Oh
 

Recommended

Grunt Advanced Vol 2, Plugins Text I/O with fun
Grunt Advanced Vol 2, Plugins Text I/O with funGrunt Advanced Vol 2, Plugins Text I/O with fun
Grunt Advanced Vol 2, Plugins Text I/O with fun
David Amend
 
Xss and sql injection
Xss and sql injectionXss and sql injection
Xss and sql injection
Bhuridech Sudsee
 
Real world blockchains
Real world blockchainsReal world blockchains
Real world blockchains
Dmitry Meshkov
 
Security in PHP Applications: An absolute must!
Security in PHP Applications: An absolute must!Security in PHP Applications: An absolute must!
Security in PHP Applications: An absolute must!
Mark Niebergall
 
Google country day_intervento
Google country day_interventoGoogle country day_intervento
Google country day_intervento
firenze-gtug
 
Blockchain Overview
Blockchain OverviewBlockchain Overview
Blockchain Overview
Eugene Yang
 
Password Managers - Lastpass
Password Managers - LastpassPassword Managers - Lastpass
Password Managers - Lastpass
Bertold Kolics
 
9. blocks - programing bitcoin
9. blocks - programing bitcoin9. blocks - programing bitcoin
9. blocks - programing bitcoin
Harry Oh
 
Dv könnun um stjórnlagaþingið3
Dv könnun um stjórnlagaþingið3Dv könnun um stjórnlagaþingið3
Dv könnun um stjórnlagaþingið3Thorri
 
Lttt
LtttLttt
Lttt
Bao Luong
 
The Future of Internet Marketing
The Future of Internet MarketingThe Future of Internet Marketing
The Future of Internet Marketing
Hunter Willis
 
Slides til TCP/IP workshop afholdt i Odense, November 2012
Slides til TCP/IP workshop afholdt i Odense, November 2012Slides til TCP/IP workshop afholdt i Odense, November 2012
Slides til TCP/IP workshop afholdt i Odense, November 2012Johnny Vestergaard
 
Hacking Demystified, Campus Vejle
Hacking Demystified, Campus VejleHacking Demystified, Campus Vejle
Hacking Demystified, Campus VejleJohnny Vestergaard
 
Cost vs. Value Webinar Slides
Cost vs. Value Webinar SlidesCost vs. Value Webinar Slides
Cost vs. Value Webinar Slides
Realtormag
 
1 st habit
1 st habit1 st habit
1 st habitTatevik Ohanyan
 
Online and Mobile Media: Week 12 - Future of Journalism
Online and Mobile Media: Week 12 - Future of JournalismOnline and Mobile Media: Week 12 - Future of Journalism
Online and Mobile Media: Week 12 - Future of Journalism
AngelicaAbano
 
CinthiaVillarreal
CinthiaVillarrealCinthiaVillarreal
CinthiaVillarrealhome
 
March 22 2012 costvs value_final
March 22 2012 costvs value_finalMarch 22 2012 costvs value_final
March 22 2012 costvs value_final
Realtormag
 
SANS xmas 2011 Hacking Submission
SANS xmas 2011 Hacking SubmissionSANS xmas 2011 Hacking Submission
SANS xmas 2011 Hacking Submission
Johnny Vestergaard
 
Seo Webinar_Realtormag_bostonlogic
Seo Webinar_Realtormag_bostonlogicSeo Webinar_Realtormag_bostonlogic
Seo Webinar_Realtormag_bostonlogic
Realtormag
 
Cost vs. Value Webinar Slides
Cost vs. Value Webinar SlidesCost vs. Value Webinar Slides
Cost vs. Value Webinar Slides
Realtormag
 
English grammer in use
English grammer in useEnglish grammer in use
English grammer in use
annafeu
 
Java script, security and you - Tri-Cities Javascript Developers Group
Java script, security and you - Tri-Cities Javascript Developers GroupJava script, security and you - Tri-Cities Javascript Developers Group
Java script, security and you - Tri-Cities Javascript Developers Group
Adam Caudill
 
Security Vulnerabilities: How to Defend Against Them
Security Vulnerabilities: How to Defend Against ThemSecurity Vulnerabilities: How to Defend Against Them
Security Vulnerabilities: How to Defend Against Them
Martin Vigo
 
Hyper Island - 2012
Hyper Island - 2012Hyper Island - 2012
Hyper Island - 2012
Detectify
 
Parallel programing in web applications - public.pptx
Parallel programing in web applications - public.pptxParallel programing in web applications - public.pptx
Parallel programing in web applications - public.pptx
Guy Bary
 
JavascriptMVC: Another choice of web framework
JavascriptMVC: Another choice of web frameworkJavascriptMVC: Another choice of web framework
JavascriptMVC: Another choice of web framework
Alive Kuo
 
Full stack java script development
Full stack java script developmentFull stack java script development
Full stack java script development
Tomislav Capan
 
25 Million Flows Later – Large-scale Detection of DOM-based XSS
25 Million Flows Later – Large-scale Detection of DOM-based XSS25 Million Flows Later – Large-scale Detection of DOM-based XSS
25 Million Flows Later – Large-scale Detection of DOM-based XSS
Ben Stock
 
Scriptless Attacks - Stealing the Pie without touching the Sill
Scriptless Attacks - Stealing the Pie without touching the SillScriptless Attacks - Stealing the Pie without touching the Sill
Scriptless Attacks - Stealing the Pie without touching the Sill
Mario Heiderich
 

More Related Content

Viewers also liked

Dv könnun um stjórnlagaþingið3
Dv könnun um stjórnlagaþingið3Dv könnun um stjórnlagaþingið3
Dv könnun um stjórnlagaþingið3Thorri
 
Lttt
LtttLttt
Lttt
Bao Luong
 
The Future of Internet Marketing
The Future of Internet MarketingThe Future of Internet Marketing
The Future of Internet Marketing
Hunter Willis
 
Slides til TCP/IP workshop afholdt i Odense, November 2012
Slides til TCP/IP workshop afholdt i Odense, November 2012Slides til TCP/IP workshop afholdt i Odense, November 2012
Slides til TCP/IP workshop afholdt i Odense, November 2012Johnny Vestergaard
 
Hacking Demystified, Campus Vejle
Hacking Demystified, Campus VejleHacking Demystified, Campus Vejle
Hacking Demystified, Campus VejleJohnny Vestergaard
 
Cost vs. Value Webinar Slides
Cost vs. Value Webinar SlidesCost vs. Value Webinar Slides
Cost vs. Value Webinar Slides
Realtormag
 
Online and Mobile Media: Week 12 - Future of Journalism
Online and Mobile Media: Week 12 - Future of JournalismOnline and Mobile Media: Week 12 - Future of Journalism
Online and Mobile Media: Week 12 - Future of Journalism
AngelicaAbano
 
CinthiaVillarreal
CinthiaVillarrealCinthiaVillarreal
CinthiaVillarrealhome
 
March 22 2012 costvs value_final
March 22 2012 costvs value_finalMarch 22 2012 costvs value_final
March 22 2012 costvs value_final
Realtormag
 
SANS xmas 2011 Hacking Submission
SANS xmas 2011 Hacking SubmissionSANS xmas 2011 Hacking Submission
SANS xmas 2011 Hacking Submission
Johnny Vestergaard
 
Seo Webinar_Realtormag_bostonlogic
Seo Webinar_Realtormag_bostonlogicSeo Webinar_Realtormag_bostonlogic
Seo Webinar_Realtormag_bostonlogic
Realtormag
 
Cost vs. Value Webinar Slides
Cost vs. Value Webinar SlidesCost vs. Value Webinar Slides
Cost vs. Value Webinar Slides
Realtormag
 
English grammer in use
English grammer in useEnglish grammer in use
English grammer in use
annafeu
 

Viewers also liked (14)

Dv könnun um stjórnlagaþingið3
Dv könnun um stjórnlagaþingið3Dv könnun um stjórnlagaþingið3
Dv könnun um stjórnlagaþingið3
 
Lttt
LtttLttt
Lttt
 
The Future of Internet Marketing
The Future of Internet MarketingThe Future of Internet Marketing
The Future of Internet Marketing
 
Slides til TCP/IP workshop afholdt i Odense, November 2012
Slides til TCP/IP workshop afholdt i Odense, November 2012Slides til TCP/IP workshop afholdt i Odense, November 2012
Slides til TCP/IP workshop afholdt i Odense, November 2012
 
Hacking Demystified, Campus Vejle
Hacking Demystified, Campus VejleHacking Demystified, Campus Vejle
Hacking Demystified, Campus Vejle
 
Cost vs. Value Webinar Slides
Cost vs. Value Webinar SlidesCost vs. Value Webinar Slides
Cost vs. Value Webinar Slides
 
1 st habit
1 st habit1 st habit
1 st habit
 
Online and Mobile Media: Week 12 - Future of Journalism
Online and Mobile Media: Week 12 - Future of JournalismOnline and Mobile Media: Week 12 - Future of Journalism
Online and Mobile Media: Week 12 - Future of Journalism
 
CinthiaVillarreal
CinthiaVillarrealCinthiaVillarreal
CinthiaVillarreal
 
March 22 2012 costvs value_final
March 22 2012 costvs value_finalMarch 22 2012 costvs value_final
March 22 2012 costvs value_final
 
SANS xmas 2011 Hacking Submission
SANS xmas 2011 Hacking SubmissionSANS xmas 2011 Hacking Submission
SANS xmas 2011 Hacking Submission
 
Seo Webinar_Realtormag_bostonlogic
Seo Webinar_Realtormag_bostonlogicSeo Webinar_Realtormag_bostonlogic
Seo Webinar_Realtormag_bostonlogic
 
Cost vs. Value Webinar Slides
Cost vs. Value Webinar SlidesCost vs. Value Webinar Slides
Cost vs. Value Webinar Slides
 
English grammer in use
English grammer in useEnglish grammer in use
English grammer in use
 

Similar to XSS Lightning talk

Java script, security and you - Tri-Cities Javascript Developers Group
Java script, security and you - Tri-Cities Javascript Developers GroupJava script, security and you - Tri-Cities Javascript Developers Group
Java script, security and you - Tri-Cities Javascript Developers Group
Adam Caudill
 
Security Vulnerabilities: How to Defend Against Them
Security Vulnerabilities: How to Defend Against ThemSecurity Vulnerabilities: How to Defend Against Them
Security Vulnerabilities: How to Defend Against Them
Martin Vigo
 
Hyper Island - 2012
Hyper Island - 2012Hyper Island - 2012
Hyper Island - 2012
Detectify
 
Parallel programing in web applications - public.pptx
Parallel programing in web applications - public.pptxParallel programing in web applications - public.pptx
Parallel programing in web applications - public.pptx
Guy Bary
 
JavascriptMVC: Another choice of web framework
JavascriptMVC: Another choice of web frameworkJavascriptMVC: Another choice of web framework
JavascriptMVC: Another choice of web framework
Alive Kuo
 
Full stack java script development
Full stack java script developmentFull stack java script development
Full stack java script development
Tomislav Capan
 
25 Million Flows Later – Large-scale Detection of DOM-based XSS
25 Million Flows Later – Large-scale Detection of DOM-based XSS25 Million Flows Later – Large-scale Detection of DOM-based XSS
25 Million Flows Later – Large-scale Detection of DOM-based XSS
Ben Stock
 
Scriptless Attacks - Stealing the Pie without touching the Sill
Scriptless Attacks - Stealing the Pie without touching the SillScriptless Attacks - Stealing the Pie without touching the Sill
Scriptless Attacks - Stealing the Pie without touching the Sill
Mario Heiderich
 
TSC Summit #4 - Howto get browser persitence and remote execution (JS)
TSC Summit #4 - Howto get browser persitence and remote execution (JS)TSC Summit #4 - Howto get browser persitence and remote execution (JS)
TSC Summit #4 - Howto get browser persitence and remote execution (JS)
Mikal Villa
 
Distributed computing in browsers as client side attack
Distributed computing in browsers as client side attackDistributed computing in browsers as client side attack
Distributed computing in browsers as client side attack
Ivan Novikov
 
Learning to Mod Minecraft: A Father/Daughter Retrospective
Learning to Mod Minecraft: A Father/Daughter RetrospectiveLearning to Mod Minecraft: A Father/Daughter Retrospective
Learning to Mod Minecraft: A Father/Daughter Retrospective
Kevin Hakanson
 
Insecurity-In-Security version.1 (2010)
Insecurity-In-Security version.1 (2010)Insecurity-In-Security version.1 (2010)
Insecurity-In-Security version.1 (2010)
Abhishek Kumar
 
Total Browser Pwnag3 V1.0 Public
Total Browser Pwnag3 V1.0 PublicTotal Browser Pwnag3 V1.0 Public
Total Browser Pwnag3 V1.0 Public
Rafal Los
 
Ple18 web-security-david-busby
Ple18 web-security-david-busbyPle18 web-security-david-busby
Ple18 web-security-david-busby
David Busby, CISSP
 
IntoWebGL - Unite Melbourne 2015
IntoWebGL - Unite Melbourne 2015IntoWebGL - Unite Melbourne 2015
IntoWebGL - Unite Melbourne 2015
Ryan Alcock
 
PrairieDevCon 2014 - Web Doesn't Mean Slow
PrairieDevCon 2014 - Web Doesn't Mean SlowPrairieDevCon 2014 - Web Doesn't Mean Slow
PrairieDevCon 2014 - Web Doesn't Mean Slow
dmethvin
 
Usersnap and the javascript magic behind the scenes - ViennaJS
Usersnap and the javascript magic behind the scenes - ViennaJSUsersnap and the javascript magic behind the scenes - ViennaJS
Usersnap and the javascript magic behind the scenes - ViennaJS
Usersnap
 
In the DOM, no one will hear you scream
In the DOM, no one will hear you screamIn the DOM, no one will hear you scream
In the DOM, no one will hear you scream
Mario Heiderich
 
An Abusive Relationship with AngularJS
An Abusive Relationship with AngularJSAn Abusive Relationship with AngularJS
An Abusive Relationship with AngularJS
Mario Heiderich
 
HTML5 New Features and Resources
HTML5 New Features and ResourcesHTML5 New Features and Resources
HTML5 New Features and Resources
Ron Reiter
 

Similar to XSS Lightning talk (20)

Java script, security and you - Tri-Cities Javascript Developers Group
Java script, security and you - Tri-Cities Javascript Developers GroupJava script, security and you - Tri-Cities Javascript Developers Group
Java script, security and you - Tri-Cities Javascript Developers Group
 
Security Vulnerabilities: How to Defend Against Them
Security Vulnerabilities: How to Defend Against ThemSecurity Vulnerabilities: How to Defend Against Them
Security Vulnerabilities: How to Defend Against Them
 
Hyper Island - 2012
Hyper Island - 2012Hyper Island - 2012
Hyper Island - 2012
 
Parallel programing in web applications - public.pptx
Parallel programing in web applications - public.pptxParallel programing in web applications - public.pptx
Parallel programing in web applications - public.pptx
 
JavascriptMVC: Another choice of web framework
JavascriptMVC: Another choice of web frameworkJavascriptMVC: Another choice of web framework
JavascriptMVC: Another choice of web framework
 
Full stack java script development
Full stack java script developmentFull stack java script development
Full stack java script development
 
25 Million Flows Later – Large-scale Detection of DOM-based XSS
25 Million Flows Later – Large-scale Detection of DOM-based XSS25 Million Flows Later – Large-scale Detection of DOM-based XSS
25 Million Flows Later – Large-scale Detection of DOM-based XSS
 
Scriptless Attacks - Stealing the Pie without touching the Sill
Scriptless Attacks - Stealing the Pie without touching the SillScriptless Attacks - Stealing the Pie without touching the Sill
Scriptless Attacks - Stealing the Pie without touching the Sill
 
TSC Summit #4 - Howto get browser persitence and remote execution (JS)
TSC Summit #4 - Howto get browser persitence and remote execution (JS)TSC Summit #4 - Howto get browser persitence and remote execution (JS)
TSC Summit #4 - Howto get browser persitence and remote execution (JS)
 
Distributed computing in browsers as client side attack
Distributed computing in browsers as client side attackDistributed computing in browsers as client side attack
Distributed computing in browsers as client side attack
 
Learning to Mod Minecraft: A Father/Daughter Retrospective
Learning to Mod Minecraft: A Father/Daughter RetrospectiveLearning to Mod Minecraft: A Father/Daughter Retrospective
Learning to Mod Minecraft: A Father/Daughter Retrospective
 
Insecurity-In-Security version.1 (2010)
Insecurity-In-Security version.1 (2010)Insecurity-In-Security version.1 (2010)
Insecurity-In-Security version.1 (2010)
 
Total Browser Pwnag3 V1.0 Public
Total Browser Pwnag3 V1.0 PublicTotal Browser Pwnag3 V1.0 Public
Total Browser Pwnag3 V1.0 Public
 
Ple18 web-security-david-busby
Ple18 web-security-david-busbyPle18 web-security-david-busby
Ple18 web-security-david-busby
 
IntoWebGL - Unite Melbourne 2015
IntoWebGL - Unite Melbourne 2015IntoWebGL - Unite Melbourne 2015
IntoWebGL - Unite Melbourne 2015
 
PrairieDevCon 2014 - Web Doesn't Mean Slow
PrairieDevCon 2014 - Web Doesn't Mean SlowPrairieDevCon 2014 - Web Doesn't Mean Slow
PrairieDevCon 2014 - Web Doesn't Mean Slow
 
Usersnap and the javascript magic behind the scenes - ViennaJS
Usersnap and the javascript magic behind the scenes - ViennaJSUsersnap and the javascript magic behind the scenes - ViennaJS
Usersnap and the javascript magic behind the scenes - ViennaJS
 
In the DOM, no one will hear you scream
In the DOM, no one will hear you screamIn the DOM, no one will hear you scream
In the DOM, no one will hear you scream
 
An Abusive Relationship with AngularJS
An Abusive Relationship with AngularJSAn Abusive Relationship with AngularJS
An Abusive Relationship with AngularJS
 
HTML5 New Features and Resources
HTML5 New Features and ResourcesHTML5 New Features and Resources
HTML5 New Features and Resources
 

Recently uploaded

spot a liar (Haiqa 146).pptx Technical writhing and presentation skills
spot a liar (Haiqa 146).pptx Technical writhing and presentation skillsspot a liar (Haiqa 146).pptx Technical writhing and presentation skills
spot a liar (Haiqa 146).pptx Technical writhing and presentation skills
haiqairshad
 
How to Manage Your Lost Opportunities in Odoo 17 CRM
How to Manage Your Lost Opportunities in Odoo 17 CRMHow to Manage Your Lost Opportunities in Odoo 17 CRM
How to Manage Your Lost Opportunities in Odoo 17 CRM
Celine George
 
BÀI TẬP DẠY THÊM TIẾNG ANH LỚP 7 CẢ NĂM FRIENDS PLUS SÁCH CHÂN TRỜI SÁNG TẠO ...
BÀI TẬP DẠY THÊM TIẾNG ANH LỚP 7 CẢ NĂM FRIENDS PLUS SÁCH CHÂN TRỜI SÁNG TẠO ...BÀI TẬP DẠY THÊM TIẾNG ANH LỚP 7 CẢ NĂM FRIENDS PLUS SÁCH CHÂN TRỜI SÁNG TẠO ...
BÀI TẬP DẠY THÊM TIẾNG ANH LỚP 7 CẢ NĂM FRIENDS PLUS SÁCH CHÂN TRỜI SÁNG TẠO ...
Nguyen Thanh Tu Collection
 
writing about opinions about Australia the movie
writing about opinions about Australia the moviewriting about opinions about Australia the movie
writing about opinions about Australia the movie
Nicholas Montgomery
 
How to Setup Warehouse & Location in Odoo 17 Inventory
How to Setup Warehouse & Location in Odoo 17 InventoryHow to Setup Warehouse & Location in Odoo 17 Inventory
How to Setup Warehouse & Location in Odoo 17 Inventory
Celine George
 
C1 Rubenstein AP HuG xxxxxxxxxxxxxx.pptx
C1 Rubenstein AP HuG xxxxxxxxxxxxxx.pptxC1 Rubenstein AP HuG xxxxxxxxxxxxxx.pptx
C1 Rubenstein AP HuG xxxxxxxxxxxxxx.pptx
mulvey2
 
Digital Artefact 1 - Tiny Home Environmental Design
Digital Artefact 1 - Tiny Home Environmental DesignDigital Artefact 1 - Tiny Home Environmental Design
Digital Artefact 1 - Tiny Home Environmental Design
amberjdewit93
 
বাংলাদেশ অর্থনৈতিক সমীক্ষা (Economic Review) ২০২৪ UJS App.pdf
বাংলাদেশ অর্থনৈতিক সমীক্ষা (Economic Review) ২০২৪ UJS App.pdfবাংলাদেশ অর্থনৈতিক সমীক্ষা (Economic Review) ২০২৪ UJS App.pdf
বাংলাদেশ অর্থনৈতিক সমীক্ষা (Economic Review) ২০২৪ UJS App.pdf
eBook.com.bd (প্রয়োজনীয় বাংলা বই)
 
Cognitive Development Adolescence Psychology
Cognitive Development Adolescence PsychologyCognitive Development Adolescence Psychology
Cognitive Development Adolescence Psychology
paigestewart1632
 
UGC NET Exam Paper 1- Unit 1:Teaching Aptitude
UGC NET Exam Paper 1- Unit 1:Teaching AptitudeUGC NET Exam Paper 1- Unit 1:Teaching Aptitude
UGC NET Exam Paper 1- Unit 1:Teaching Aptitude
S. Raj Kumar
 
Advanced Java[Extra Concepts, Not Difficult].docx
Advanced Java[Extra Concepts, Not Difficult].docxAdvanced Java[Extra Concepts, Not Difficult].docx
Advanced Java[Extra Concepts, Not Difficult].docx
adhitya5119
 
Traditional Musical Instruments of Arunachal Pradesh and Uttar Pradesh - RAYH...
Traditional Musical Instruments of Arunachal Pradesh and Uttar Pradesh - RAYH...Traditional Musical Instruments of Arunachal Pradesh and Uttar Pradesh - RAYH...
Traditional Musical Instruments of Arunachal Pradesh and Uttar Pradesh - RAYH...
imrankhan141184
 
The History of Stoke Newington Street Names
The History of Stoke Newington Street NamesThe History of Stoke Newington Street Names
The History of Stoke Newington Street Names
History of Stoke Newington
 
NEWSPAPERS - QUESTION 1 - REVISION POWERPOINT.pptx
NEWSPAPERS - QUESTION 1 - REVISION POWERPOINT.pptxNEWSPAPERS - QUESTION 1 - REVISION POWERPOINT.pptx
NEWSPAPERS - QUESTION 1 - REVISION POWERPOINT.pptx
iammrhaywood
 
Pollock and Snow "DEIA in the Scholarly Landscape, Session One: Setting Expec...
Pollock and Snow "DEIA in the Scholarly Landscape, Session One: Setting Expec...Pollock and Snow "DEIA in the Scholarly Landscape, Session One: Setting Expec...
Pollock and Snow "DEIA in the Scholarly Landscape, Session One: Setting Expec...
National Information Standards Organization (NISO)
 
LAND USE LAND COVER AND NDVI OF MIRZAPUR DISTRICT, UP
LAND USE LAND COVER AND NDVI OF MIRZAPUR DISTRICT, UPLAND USE LAND COVER AND NDVI OF MIRZAPUR DISTRICT, UP
LAND USE LAND COVER AND NDVI OF MIRZAPUR DISTRICT, UP
RAHUL
 
Main Java[All of the Base Concepts}.docx
Main Java[All of the Base Concepts}.docxMain Java[All of the Base Concepts}.docx
Main Java[All of the Base Concepts}.docx
adhitya5119
 
ANATOMY AND BIOMECHANICS OF HIP JOINT.pdf
ANATOMY AND BIOMECHANICS OF HIP JOINT.pdfANATOMY AND BIOMECHANICS OF HIP JOINT.pdf
ANATOMY AND BIOMECHANICS OF HIP JOINT.pdf
Priyankaranawat4
 
How to Fix the Import Error in the Odoo 17
How to Fix the Import Error in the Odoo 17How to Fix the Import Error in the Odoo 17
How to Fix the Import Error in the Odoo 17
Celine George
 
Beyond Degrees - Empowering the Workforce in the Context of Skills-First.pptx
Beyond Degrees - Empowering the Workforce in the Context of Skills-First.pptxBeyond Degrees - Empowering the Workforce in the Context of Skills-First.pptx
Beyond Degrees - Empowering the Workforce in the Context of Skills-First.pptx
EduSkills OECD
 

Recently uploaded (20)

spot a liar (Haiqa 146).pptx Technical writhing and presentation skills
spot a liar (Haiqa 146).pptx Technical writhing and presentation skillsspot a liar (Haiqa 146).pptx Technical writhing and presentation skills
spot a liar (Haiqa 146).pptx Technical writhing and presentation skills
 
How to Manage Your Lost Opportunities in Odoo 17 CRM
How to Manage Your Lost Opportunities in Odoo 17 CRMHow to Manage Your Lost Opportunities in Odoo 17 CRM
How to Manage Your Lost Opportunities in Odoo 17 CRM
 
BÀI TẬP DẠY THÊM TIẾNG ANH LỚP 7 CẢ NĂM FRIENDS PLUS SÁCH CHÂN TRỜI SÁNG TẠO ...
BÀI TẬP DẠY THÊM TIẾNG ANH LỚP 7 CẢ NĂM FRIENDS PLUS SÁCH CHÂN TRỜI SÁNG TẠO ...BÀI TẬP DẠY THÊM TIẾNG ANH LỚP 7 CẢ NĂM FRIENDS PLUS SÁCH CHÂN TRỜI SÁNG TẠO ...
BÀI TẬP DẠY THÊM TIẾNG ANH LỚP 7 CẢ NĂM FRIENDS PLUS SÁCH CHÂN TRỜI SÁNG TẠO ...
 
writing about opinions about Australia the movie
writing about opinions about Australia the moviewriting about opinions about Australia the movie
writing about opinions about Australia the movie
 
How to Setup Warehouse & Location in Odoo 17 Inventory
How to Setup Warehouse & Location in Odoo 17 InventoryHow to Setup Warehouse & Location in Odoo 17 Inventory
How to Setup Warehouse & Location in Odoo 17 Inventory
 
C1 Rubenstein AP HuG xxxxxxxxxxxxxx.pptx
C1 Rubenstein AP HuG xxxxxxxxxxxxxx.pptxC1 Rubenstein AP HuG xxxxxxxxxxxxxx.pptx
C1 Rubenstein AP HuG xxxxxxxxxxxxxx.pptx
 
Digital Artefact 1 - Tiny Home Environmental Design
Digital Artefact 1 - Tiny Home Environmental DesignDigital Artefact 1 - Tiny Home Environmental Design
Digital Artefact 1 - Tiny Home Environmental Design
 
বাংলাদেশ অর্থনৈতিক সমীক্ষা (Economic Review) ২০২৪ UJS App.pdf
বাংলাদেশ অর্থনৈতিক সমীক্ষা (Economic Review) ২০২৪ UJS App.pdfবাংলাদেশ অর্থনৈতিক সমীক্ষা (Economic Review) ২০২৪ UJS App.pdf
বাংলাদেশ অর্থনৈতিক সমীক্ষা (Economic Review) ২০২৪ UJS App.pdf
 
Cognitive Development Adolescence Psychology
Cognitive Development Adolescence PsychologyCognitive Development Adolescence Psychology
Cognitive Development Adolescence Psychology
 
UGC NET Exam Paper 1- Unit 1:Teaching Aptitude
UGC NET Exam Paper 1- Unit 1:Teaching AptitudeUGC NET Exam Paper 1- Unit 1:Teaching Aptitude
UGC NET Exam Paper 1- Unit 1:Teaching Aptitude
 
Advanced Java[Extra Concepts, Not Difficult].docx
Advanced Java[Extra Concepts, Not Difficult].docxAdvanced Java[Extra Concepts, Not Difficult].docx
Advanced Java[Extra Concepts, Not Difficult].docx
 
Traditional Musical Instruments of Arunachal Pradesh and Uttar Pradesh - RAYH...
Traditional Musical Instruments of Arunachal Pradesh and Uttar Pradesh - RAYH...Traditional Musical Instruments of Arunachal Pradesh and Uttar Pradesh - RAYH...
Traditional Musical Instruments of Arunachal Pradesh and Uttar Pradesh - RAYH...
 
The History of Stoke Newington Street Names
The History of Stoke Newington Street NamesThe History of Stoke Newington Street Names
The History of Stoke Newington Street Names
 
NEWSPAPERS - QUESTION 1 - REVISION POWERPOINT.pptx
NEWSPAPERS - QUESTION 1 - REVISION POWERPOINT.pptxNEWSPAPERS - QUESTION 1 - REVISION POWERPOINT.pptx
NEWSPAPERS - QUESTION 1 - REVISION POWERPOINT.pptx
 
Pollock and Snow "DEIA in the Scholarly Landscape, Session One: Setting Expec...
Pollock and Snow "DEIA in the Scholarly Landscape, Session One: Setting Expec...Pollock and Snow "DEIA in the Scholarly Landscape, Session One: Setting Expec...
Pollock and Snow "DEIA in the Scholarly Landscape, Session One: Setting Expec...
 
LAND USE LAND COVER AND NDVI OF MIRZAPUR DISTRICT, UP
LAND USE LAND COVER AND NDVI OF MIRZAPUR DISTRICT, UPLAND USE LAND COVER AND NDVI OF MIRZAPUR DISTRICT, UP
LAND USE LAND COVER AND NDVI OF MIRZAPUR DISTRICT, UP
 
Main Java[All of the Base Concepts}.docx
Main Java[All of the Base Concepts}.docxMain Java[All of the Base Concepts}.docx
Main Java[All of the Base Concepts}.docx
 
ANATOMY AND BIOMECHANICS OF HIP JOINT.pdf
ANATOMY AND BIOMECHANICS OF HIP JOINT.pdfANATOMY AND BIOMECHANICS OF HIP JOINT.pdf
ANATOMY AND BIOMECHANICS OF HIP JOINT.pdf
 
How to Fix the Import Error in the Odoo 17
How to Fix the Import Error in the Odoo 17How to Fix the Import Error in the Odoo 17
How to Fix the Import Error in the Odoo 17
 
Beyond Degrees - Empowering the Workforce in the Context of Skills-First.pptx
Beyond Degrees - Empowering the Workforce in the Context of Skills-First.pptxBeyond Degrees - Empowering the Workforce in the Context of Skills-First.pptx
Beyond Degrees - Empowering the Workforce in the Context of Skills-First.pptx
 

XSS Lightning talk

  • 1. March 2012 Introduction to Cross Site Scripting  Lightning talk held at OSAA Johnny Vestergaard <jkv@unixcluster.dk> http://dk.linkedin.com/in/johnnykv
  • 2. XSS - Cross Site Scripting Worst name ever?? ● Think of it as "JavaScript Injection". ○ (and ignore the haters) ● Injection of malicious JavaScript on a site with the intend of client side execution. ● Three types: Reflected, Persistent and DOM based. ● We will focus on Persistent XSS tonight.
  • 5. Hey - it's just client side!
  • 6. Having a client side party ● Possibilities ○ Host scanning of client-side LAN ○ Session takeover (cookie stealing) ○ Eavesdropping ■ Keylogging ■ Events ○ Complete control of the page ● Limitations ○ Confined to the browser
  • 7. Demo ● Keylogger using metasploit ● Cookie stealer with python backend
  • 8. Demo #1 -  Keylogger with metasploit
  • 9. Demo #2 -  The Cookie Monster https://gist.github.com/1968842
  • 10. Do it yourself Whitehat style ● Backtrack 5 ○ http://www.backtrack-linux.org/ ● OWASP Broken Web Applications Project ○ VMware image with broken web apps ○ http://bit.ly/yNsF9K ● Cookie Monster ○ http://gist.github.com/1968842 ● Slides ○ http://www.slideshare.net/JohnnyKV/