Research and Development

This presentation has given in Intercon 2007 (Portcullis’s internal conference), Talks about exploiting and identifying most common XSS vulnerabilities in real world.

Examples include following types,

  • Classic XSS Vulnerabilities
  • In HTML Attributes
  • In Comments
  • In Javascript Blocks
  • DOM Based XSS
  • Flash Based XSS
  • Direct Linking

Presentation was heavily based on demonstration, so you need to fill in the blanks.


Request to be added to the Portcullis Labs newsletter

We will email you whenever a new tool, or post is added to the site.

Your Name (required)

Your Email (required)