HACKING WITH XSS CROSS SITE SCRIPTING
In this course, you will learn A Cross Site Scripting (XSS) vulnerability may allow hackers to inject malicious coded scripts in web pages of a web application.When users of that web application will click on injected malicious link, hackers could steal all the browser history, cookies and other sensitive information of victim which is stored in web browser.
COURSE CURRICULUM
Section 1: Introduction
Introduction
XSS Introduction
XSS Basics Demonstration
Finding xss websites
The Genesis of an XSS Worm
Section 2: The XSS Discovery Toolkit
Grease monkey
Trmper data
Burp Suite
Dom Inspector
No Script Suite Lite
Section 3: Non-persistent XSS (Reflected XSS)
Finding reflected XSS vulnerabilities
XSS Reflected Ajax, json and xml
Json XSS
XSS – Reflected (JSON)
Reflected XSS in error pages Report
XSS Eval Reflected
XSS – Reflected (HREF)
*XSS Post Method8
XSS using Burp Suite for Post Request
Section 4: Document Object Module (DOM) based XSS
Dom Based XSS
XML source file injecting XSS script
SeXXS Offenders
Section 5: Persistent XSS (Stored XX)
Cross-site Scripting (XSS) stored
XSS stored Low
XSS stored Medium
Stored XSS high
Stored reflected XSS
Cross-site Scripting (XSS) stored report
Permanent Cross-site Scripting
Section 6: XSS scanner and Exploitation Tool
Trity tool for checking XSS Vulnerable
XSS using Cookies
Stealing Cookies
Cookie stealing via mail hyperlink
BEEF XSS Exploit tool
Section 7: XSS Basic and Advance Filter Evasion
Bypassing Basic filters XSS
Bypassing Basic Filters XSS Cont
Bypassing advanced filters XSS
Bypassing advance filters URL Hexadecimal
Section 8: XSS Payloads
Location Based Payloads 1
Location Based Payloads 2
webGun XSS payload building tool
Identify of user input Refections
Section 9: XSS Miscellaneous Attacks
BruteXSS – Cross-Site Scripting BruteForcer
Cross-site Scripting (XSS) via file uploading
File upload XSS on image Content
Stored XSS Pornhub
How to Prevent Cross-Site Scripting (XSS) Attacks