Cross-site scripting (XSS) is one of the most widespread and dangerous vulnerabilities in modern web applications. There are hackers who earn a 4-digit reward ($$$$) per single XSS in bug bounty programs, which is just amazing.
There are many people hunting for XSSs, but only a few of them are successful. What makes them successful? They focus on non-standard XSSs and this is exactly what I present in this course!
I’m one of the top hackers at HackerOne (among more than 100,000 registered hackers), and I really know how to make money out there. If you want to become a successful XSS hunter, then this course is just for you.
In Part 1 of Case-Studies of Award-Winning XSS Attacks, you will learn about the following non-standard XSS attacks:
1. XSS via Image
2. XSS via HTTP Response Splitting
3. XSS via Cookie
4. XSS via AngularJS Template Injection
For every single bug there is a DEMO so that you can see how to find these bugs step-by-step in practice.
Are you ready to become a successful XSS hunter? Let’s enroll to this course and start an exciting journey.
If you are interested in more award-winning XSS attacks, then I also recommend you to see the follow-up course "Case-Studies of Award-Winning XSS Attacks: Part 2".
- Basic understanding of XSS attacks