Best Blackhat Forum

Best Blackhat Forum > BlackHat SEO & WhiteHat SEO > Black Hat SEO > Learn XSS (Cross-Site Scripting) Injection
Full Version: Learn XSS (Cross-Site Scripting) Injection
You're currently viewing a stripped down version of our content. View the full version with proper formatting.

bestblackhatforum

03-31-2011, 01:33 AM
Learn XSS (Cross-Site Scripting) Injection

Cross-Site Scripting, commonly known as XSS, is a type of attack that gathers malicious information
about a user; typically in the form of a specially crafted hyperlink that will save the users credentials.
An example of this would be a well known XSS vulnerability in phpBB that allows the attacker to forge
his/her credentials to that of the administrative account.
One of the simpler ways of preforming an XSS attack is through the use of dynamically generated pages.
This relies on the ability to pass information from one page to another, whether valid or malicious.
Because a browser will render any valid scripting tag, an attacker is able to pass allowed content to the
next page or even stored location to be retrieved at a later time that may result in a popup with the viewers
cookie, for example.

Download Basic Ebook:
http://packetstorm.linuxsecurity.com/pap...inject.pdf

XSS (Cross Site Scripting) Cheat Sheet
http://ha.ckers.org/xss.html

newwave

03-31-2011, 02:04 AM
o.O Wow... Great share of knowledge!

mobhugger

03-31-2011, 07:15 AM
(03-31-2011 02:04 AM)theultima Wrote: [ -> ]o.O Wow... Great share of knowledge!
it's a bot lol, but yeah I will have to check if i can tweak some old code which doesn't work on a site because of a new interface and stuff now. If it works I can hit frontpage on the social network like a piece of cake :rofl:
Best Blackhat Forum > BlackHat SEO & WhiteHat SEO > Black Hat SEO > Learn XSS (Cross-Site Scripting) Injection
Reference URL's