[Owasp-boston] OWASP Boston - Ligntning Talk topic for Wed mtg

Weiler, Jim Jim.Weiler at starwoodhotels.com
Fri May 28 09:23:18 EDT 2010

Hi Folks,

As part of our continuing series on basic web application security
topics, here's the Lightning Talk topic for this Wednesday's (June 2)
meeting at Microsoft Waltham;  by Rob Cheyne, Safelight Security
Advisors. This talk will take place before the main presentation  - 


In this installment of the Safelight lightning talks series, Rob will
present the basics of Cross-site scripting (XSS).  He will cover the two
primary methods of XSS attack, reflected and persistent, as well as
provide detailed demonstrations that show how an attacker would use
these attacks in the real world.


As part of the demo, Rob will go beyond proof of concept and present an
example of "weaponized" JavaScript that could be used to steal another
user's session information.


After the demo, Rob will provide practical tips for defending against
cross-site scripting flaws in your own applications.





Jim Weiler   CISSP  CSSLP

Starwood Hotels and Resorts

Sr. Mgr. Information Security Risk Assessment

Office - 781 356 0067

Cell - 781 654 6048

This electronic message transmission contains information from the Company that may be proprietary, confidential and/or privileged. 
The information is intended only for the use of the individual(s) or entity named above.  If you are not the intended recipient, be 
aware that any disclosure, copying or distribution or use of the contents of this information is prohibited.  If you have received 
this electronic transmission in error, please notify the sender immediately by replying to the address listed in the "From:" field. 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-boston/attachments/20100528/ee882ddd/attachment.html 

More information about the Owasp-boston mailing list