Skip to content
Snippets Groups Projects
Commit 012a9366 authored by Jonathan Jogenfors's avatar Jonathan Jogenfors
Browse files

Added hint for XSS filter

parent aa46bd3b
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
Shepherd.pdf
+ 0
0
View file @ 012a9366
No preview for this file type
Shepherd.tex
+ 4
1
View file @ 012a9366
...@@ -301,7 +301,10 @@ them. However, you are free to do the challenges in any order you want. ...@@ -301,7 +301,10 @@ them. However, you are free to do the challenges in any order you want.
\item[Poor Data Validation 2] Remember that large integers can overflow! \item[Poor Data Validation 2] Remember that large integers can overflow!
\item[Failure to Restrict URL Access 1] \item[Failure to Restrict URL Access 1]
\item[CSRF 1] \item[CSRF 1]
\item[Cross Site Scripting 2] \item[Cross Site Scripting 2]. Now the XSS filter is getting more clever,
but it's not perfect. Check the source code of the HTML returned from
the server to see which commands are filtered and which are not. Use the
hints from the slides.
\item[Session Management Challenge 4] Can you guess a Session ID? It should \item[Session Management Challenge 4] Can you guess a Session ID? It should
be somewhat larger than 20. be somewhat larger than 20.
\item[Failure to Restrict URL Access 2] \item[Failure to Restrict URL Access 2]
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment