Outer Web | Explore

Explore >> Select a destination

You are here		blog.val.town Introducing val.run
\|	\|	www.trevorlasn.com Frontend Security Checklist	3.8 parsecs away Travel
\|	\|	Tips for Keeping All Frontend Applications Secure	3.8 parsecs away Travel
\|	\|	www.matuzo.at Web Security Basics: XSS - Manuel Matuzovic	2.9 parsecs away Travel
\|	\|	An introduction to Cross Site Scripting and XSS prevention.	2.9 parsecs away Travel
\|	\|	neilmadden.blog XSS doesn't have to be game over - Neil Madden	3.7 parsecs away Travel
\|	\|	A message I'm very used to seeing - but does XSS have to mean game over for web security? There's a persistent belief among web security people that cross-site scripting (XSS) is a "game over" event for defence: there is no effective way to recover if an attacker can inject code into your site. Brian...	3.7 parsecs away Travel
\|	\|	mathieu.fenniak.net Is your Web API susceptible to a CSRF exploit? \| Mathieu Fenniak	8.0 parsecs away Travel
\|		Cross-site request forgery (CSRF) is a type of security exploit where a user's web browser is tricked by a third-party site into performing actions on websites that the user is logged into. It is often a difficult attack to pull off, as it requires a number of factors to line up at once. Protecting against it requires good discipline and good design practices, especially when it comes to protecting Web APIs. Here's a brief example of a fictitious CSRF attack against a bank:	8.0 parsecs away Travel