Evan Martin (evan) wrote in evan_tech,
Evan Martin

xss cheat sheet

Via nikolasco, XSS cheat sheet. High signal to noise ratio, with snippets that make me wince like "IMG SRC=&#0000106&#000009", and Brad's favorite, "someattr="jav ascript:alert('XSS');"".

Lots of stuff on there I hadn't seen before. I'm glad I don't have to deal with this stuff.
Tags: javascript

  • blog moved

    As described elsewhere, I've quit LiveJournal. If you're interested in my continuing posts, you should look at one of these (each contains feed…

  • dremel

    They published a paper on Dremel, my favorite previously-unpublished tool from the Google toolchest. Greg Linden discusses it: "[...] it is capable…

  • treemaps

    I finally wrote up my recent adventures in treemapping, complete with nifty clickable visualizations.

  • Post a new comment


    default userpic
    When you submit the form an invisible reCAPTCHA check will be performed.
    You must follow the Privacy Policy and Google Terms of use.