#xss
-
google-caja - Google Code
“Caja (pronounced “KA-ha”) is “virtual iframes”: it allows you to put untrusted third-party HTML and JavaScript inline in...Categories
-
McAfee 'Hacker Safe' cert sheds more cred
Demotes XSS vulnerabilities -
Rail Spikes: Auto-escaping HTML with Rails
Stops you forgetting to do this yourself -
HTML Purifier
Standards compliant HTML cleaner in PHPCategories
-
XSS (Cross Site Scripting) Cheat Sheet
Categories
-
JSONRequest
Proposal to replace XMLHttpRequest with a system that allows data interchange with any server, not just the server of the...Categories
-
Mozilla causing XSS in Livejournal
It’s down to the -moz-binding CSS attribute which can be used maliciously -
MySpace Worm Explanation
How a hacker exploited myspace.com -
XSS (Cross Site Scripting) Cheatsheet: Esp: for filter evasion - by RSnake