-
Notifications
You must be signed in to change notification settings - Fork 0
security XSS
Soumya Ray edited this page Apr 14, 2015
·
2 revisions
-
Cross-site Scripting (XSS) Attack
- What is Cross-site Scripting?
- The Theory of XSS
- XSS Attack Vectors
- Is your site vulnerable to Cross-site Scripting?
- Example of a Cross-site Scripting Attack
-
Prevention Examples
- Example of XSS in Sinatra
- Prevention tips
- Escaping HTML in Ruby
-
Sanitize gem
- sanitize for HTML fragments and documents, CSS stylesheets
- specify tags as exceptions
- Authentication
- Authorization
- Home
- Information
- Performance
- Protocols
- Resource
- Confidentiality
- Security
- Authentication
- Cryptography
- Injection
- XSS
- Services