All-in-One Guides:Web application security -- How to prevent attacks

Types of attacks

Cross-site scripting: XSS

Display in sets of:

1 - 4 of 4 in Cross-site scripting: XSS

Jeremiah Grossman on the pervasive nature of XSS

13 Jun 2007

Interview - Jeremiah Grossman, founder and chief technology officer of WhiteHat Security, talks about his new book, Cross Site Scripting Attacks: XSS Exploits and Defense; how developers and users can defend themselves against XSS; and the state of Web application...
Guarding against XSS in ASP.NET

Ask the Expert - Expert Dan Cornell explains how to use the tools available in ASP.NET to prevent cross-site scripting (XSS) attacks.
XSS prevention in Java

Ask the Expert - Cross-site scripting exploits can devastate Java apps. With XSS attacks on the rise, expert Ramesh Nagappan explains how to prevent these exploits in J2EE applications through proper input validation and other methods.
Cross Site Scripting Attacks: XSS Exploits and Defense -- Chapter 5, Advanced XSS Attack Vectors

Tip - In the past, the primary focus of XSS attack was Web applications that failed to filter user-supplied data. Researchers have since discovered that there are several other ways an attacker can inject JavaScript into a user's browser. This chapter,...

1 - 4 of 4 in Cross-site scripting: XSS

SOA
- Using enterprise architecture (EA) and SOA to bridge business and IT
  
  Implementing strong enterprise architecture and SOA helps support both business and software technology growth.
- Profiles in application integration
  
  As both service-oriented and cloud-based architecture take the fore, IT shops increasingly value top-notch integration design. Stories show application integration is changing today.
- SOA growth reveals benefits and lessons
  
  Service-oriented architecture is a way of including roles (customers, suppliers, engineers, etc.) and viewing everything as a service. Generally, we recognize services that are provided by people, machines and both. SOA is the most important development in the last ten years and is 1) Business-oriented - "describe what not how" and 2) Message-oriented - "just ask and the service is given."
Java
- OCAJP & OCPJP Coverage of New Java 7 Features and APIs: Video Tutorials
  
  Here at TheServerSide.com, we've been providing some very dedicated coverage to the new features of Java 7, with a look at tackling some of the new Java 7 APIs like the new File I/O (NIO.2) and concurrency libraries with tutorials and learning guides in the near future.
- OCAJP/OCPJP Video Tutorial: Exploring Binary Notation and Underscores
  
  This video tutorial demonstrates some new Java 7 features, namely the ability to use binary notation when assigning literal values, along with the ability to use underscores in numbers.
- Setting Up Eclipse for Java 7 Application Development
  
  This tutorial follows up on the previous two tutorials on installing Java 7 and configuring the JAVA_HOME environment variable. With those two tasks completed and confirmed, we now demonstrate how to install the Eclipse development tool.
Windows Development
- Testing methods in Visual Studio 2010
  
  This is the second part in a two part series on unit testing in Visual Studio 2010.
- Unit testing in Visual Studio 2010
  
  Visual Studio 2010 contains a unit testing framework, and I’ll show you how to use it to automate your own unit tests.
- Understanding the testing tools in Visual Studio 2010
  
  Get an overview of the testing tools available in Visual Studio. You will learn which testing features are in which Visual Studio edition.
Oracle
- Oracle purchase of Taleo indicates rising SaaS trend
  
  Oracle has spent $3.4 billion on Taleo and RightNow in the past few months, showing that it is serious about hosting applications in the cloud for its customers.
- Making Monday the start of the week in Oracle SQL
  
  One reader asks how to set up a report in Oracle SQL so that Monday is the first day of the week.
- Oracle Advanced Analytics bundles R with Oracle Database
  
  Oracle Advanced Analytics is the company’s newest announcement around data analytics, a market that Oracle seeks to blanket with products.
Cloud computing
- Keys to integrated cloud application management
  
  Seamless cloud application management isn’t a pipe dream. By following a few steps, cloud admins can monitor cloud app performance from one interface.
- Cloud infrastructure providers remain hot commodities
  
  Cloud infrastructure providers attracted acquisitive suitors last year. Profitable cloud vendors this year will catch the eye of telecoms.
- Digging deeper into IBM SmartCloud for private clouds
  
  IBM SmartCloud services give enterprises some options to build private and hybrid clouds and may give IBM a chance to improve its lagging cloud image.
Business Analytics
- TDWI BI Executive Summit: Business intelligence benefits & strategies
  
  Get news and other information resources about strategies for gaining business intelligence benefits, reported from the TDWI World Conference and BI Executive Summit in Las Vegas.
- Airport retailer leaves Excel behind with BI tools makeover
  
  The Paradies Shops’ search for BI tools to access data quickly and break away from Excel spreadsheets started with data discovery vendors but didn’t end with them.
- Hadoop is hot, but not most popular ‘big data’ technology
  
  New research reveals businesses’ relative lack of “big data” maturity and the hurdles in both technology and analytics techniques they need to overcome.

Latest Headlines

Topics

Project Management

Models and Methodologies

Requirements

Security Testing and QA

Software Testing

ALM

Hot Topics

Advice & Tutorials

Technology Dictionary

Tips

Answers

Ask a Question

Research Library

Product Demos

Blogs

All-in-One Guides:Web application security -- How to prevent attacks

Types of attacks

Cross-site scripting: XSS

More from Related TechTarget Sites

Using enterprise architecture (EA) and SOA to bridge business and IT

Profiles in application integration

SOA growth reveals benefits and lessons

OCAJP & OCPJP Coverage of New Java 7 Features and APIs: Video Tutorials

OCAJP/OCPJP Video Tutorial: Exploring Binary Notation and Underscores

Setting Up Eclipse for Java 7 Application Development

Testing methods in Visual Studio 2010

Unit testing in Visual Studio 2010

Understanding the testing tools in Visual Studio 2010

Oracle purchase of Taleo indicates rising SaaS trend

Making Monday the start of the week in Oracle SQL

Oracle Advanced Analytics bundles R with Oracle Database

Keys to integrated cloud application management

Cloud infrastructure providers remain hot commodities

Digging deeper into IBM SmartCloud for private clouds

TDWI BI Executive Summit: Business intelligence benefits & strategies

Airport retailer leaves Excel behind with BI tools makeover

Hadoop is hot, but not most popular ‘big data’ technology