Library

Course: Case Studies of Award-Winning XSS Attacks: Part 1

Case Studies of Award-Winning XSS Attacks: Part 1

  • Life Time Access
  • Certificate on Completion
  • Access on Android and iOS App
  • Self-Paced
About this Course

Cross-site scripting (XSS) is one of the most widespread and dangerous vulnerabilities in modern web applications. There are hackers who earn a 4-digit reward ($$$$) per single XSS in bug bounty programs, which is just amazing.

There are many people hunting for XSSs, but only a few of them are successful. What makes them successful? They focus on non-standard XSSs and this is exactly what I present in this course!

I’m one of the top hackers at HackerOne (among more than 100,000 registered hackers), and I really know how to make money out there. If you want to become a successful XSS hunter, then this course is just for you.

In Part 1 of Case-Studies of Award-Winning XSS Attacks, you will learn about the following non-standard XSS attacks:

  • XSS via Image
  • XSS via HTTP Response Splitting
  • XSS via Cookie
  • XSS via AngularJS Template Injection

For every single bug there is a DEMO so that you can see how to find these bugs step-by-step in practice.

Are you ready to become a successful XSS hunter? Let’s enroll to this course and start an exciting journey.

If you are interested in more award-winning XSS attacks, then I also recommend you to see the follow-up course "Case-Studies of Award-Winning XSS Attacks: Part 2".

Who this course is for:

  • Penetration testers, ethical hackers, bug hunters, security engineers / consultants
Basic knowledge
  • Basic understanding of XSS attacks
What you will learn
  • Learn How Hackers Earn a 4-digit Reward ($$$$) per Single XSS
  • Discover How to Find These XSSs Step-by-step in Practice (DEMOS)
  • Become a Successful Bug Hunter
  • Learn From One of The Top Hackers at HackerOne 
Curriculum
Number of Lectures: 10
Total Duration: 01:07:13
Introduction
  • Introduction  
XSS via Image
  • XSS via Image - Overview  
  • XSS via Image - Demo  
XSS via HTTP Response Splitting
  • XSS via HTTP Response Splitting - Overview  
  • XSS via HTTP Response Splitting - Demo  
XSS via Cookie
  • XSS via Cookie - Overview  
  • XSS via Cookie - Demo  
XSS via AngularJS Template Injection
  • XSS via AngularJS Template Injection - Overview  
  • XSS via AngularJS Template Injection - Demo  
Summary
  • Summary  
Reviews (0)