In cross-site scripting (XSS) attacks, attackers place malicious scripts on a website that contains instructions directing a web browser to access a second site. In this video, learn how attackers wage cross-site scripting attacks and the ways that security professionals may defend against these attacks on their websites.
- [Instructor] Cross-site scripting attacks are one of…the most dangerous web-based attacks on the internet today.…They're easily executed by attackers and can take place…without the knowledge of the victim.…Cross-site scripting attacks commonly abbreviated as…XSS attacks, occur when an attacker embeds malicious code…in a third-party website that then runs within the…web browsers of other visitors to that site.…Let's take a look at how they work.…As you may know, web pages are made using HTML code.…
HTML is a markup language that allows web pages to have…all sorts of advanced functionality, other than just…displaying plain text.…HTML authors can add different fonts, include images,…link to other sites and even include small programs…called scripts that run in the browsers of visitors…to the site.…HTML uses the concept of tags to perform…all of these actions.…For example, the <b> tag formats bold text.…
The <i> tag formats italicized text and the <a> tag…is used to include hyperlinks in a web page.…
- Comparing viruses, worms, and Trojans
- Backdoors and logic bombs
- Understanding the attacker
- Attack types: from denial of service to brute force attacks
- Preventing insider threats
- Wireless attacks
- Understanding cross-site scripting
- Preventing SQL injection
- Social engineering
- Scanning for vulnerabilities
- Penetration testing
- Assessing the impact of vulnerabilities
Skill Level Beginner
IT Security Foundations: Core Conceptswith Lisa Bock1h 13m Beginner
Insights from a Cybersecurity Professionalwith Mike Chapple32m 15s Appropriate for all
2. Understanding Attackers
3. Understanding Attack Types
4. Wireless Attacks
5. Application Attacks
6. Social Engineering Attacks
7. Vulnerability Scanning and Penetration Testing
8. Impact of Vulnerabilities
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.