Libinjection: From SQLi to XSS Detection - New Algorithm Introduction

Libinjection: From SQLi to XSS Detection - New Algorithm Introduction

OWASP Foundation via YouTube Direct link

HTML5 Tokenization

20 of 28
Previous
Next

20 of 28

HTML5 Tokenization

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

Libinjection: From SQLi to XSS Detection - New Algorithm Introduction

Automatically move to the next video in the Classroom when playback concludes
  1. 1 Intro
  2. 2 What's the Goal?
  3. 3 What is Libinjection?
  4. 4 Why libinjection?
  5. 5 Initial Attempt
  6. 6 Go Get It!
  7. 7 HTML Injection
  8. 8 These are attacks against the HTML tokenization algorithm.
  9. 9 Javascript Injection
  10. 10 Hard Problem
  11. 11 Use a HTML Purifier
  12. 12 Sanitization Functions
  13. 13 Regular Expressions
  14. 14 Web Browsers!
  15. 15 Opera
  16. 16 XSS Detection for The Future
  17. 17 Pick Your Battles Not Covering
  18. 18 Technique
  19. 19 Shifting the Problem
  20. 20 HTML5 Tokenization
  21. 21 Problematic Tokens
  22. 22 Yeah its a blacklist
  23. 23 XSS Cheatsheets
  24. 24 Attack / Scanners
  25. 25 IE Unbalanced Quote
  26. 26 Performance
  27. 27 Current Status 2014-01-27
  28. 28 What do you expect?

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.