SkillSoft Explore Course – Lambers, Inc.

IT Skills Security Software Development Security OWASP Top 10 2020

Most web apps accept some kind of input, whether from users or through other automated means. All app input must be treated as untrusted and must be vigorously validated to ensure application and data integrity. In this course, you'll learn the difference between Java and JavaScript, as well as what cross-site scripting is and how it can compromise a web site and its visitors. Next, you'll learn how to execute various XSS attacks against an intentionally vulnerable virtual machine, including through web forms. You'll also explore how to use XSS to hijack a user web browser and how to mitigate XSS attacks.

Asset ID	it_spowasp20dj_08_enus
Course Type	Video Course
Course Category	Security

Objectives
OWASP Top 10: A7 - Cross-site Scripting discover the key concepts covered in this course describe how Java and JavaScript are used in web applications recognize how Cross-site Scripting (XSS) attacks occur run a XSS attack through web page forms run a XSS attack to hijack a client web browser deploy security controls to mitigate XSS attacks summarize the key concepts covered in this course

Objectives

OWASP Top 10: A7 - Cross-site Scripting

discover the key concepts covered in this course
describe how Java and JavaScript are used in web applications
recognize how Cross-site Scripting (XSS) attacks occur
run a XSS attack through web page forms
run a XSS attack to hijack a client web browser
deploy security controls to mitigate XSS attacks
summarize the key concepts covered in this course