New book: “Cross-Site Scripting Attacks: XSS Exploits and Attacks”
WhiteHat Security today announced the availability of Jeremiah Grossman’s book — Cross-Site Scripting Attacks: XSS Exploits and Attacks. The book offers a detailed definition of the attack, how it is executed and defensive measures available to address the most prevalent website vulnerability today — XSS. Grossman has teamed up with respected industry experts Seth Fogie, Robert Hansen, Anton Rager and Petko D. Petkov to provide an all-encompassing view of this attack and how it can be prevented effectively.
The book discusses the concepts, methodology, and technology that make XSS a significant concern. How significant? As recently as April 2007, WhiteHat Security’s Website Security Statistics Report demonstrated that XSS is the most common attack today, affecting eight out of 10 websites. The authors explore various types of XSS attacks, how they are implemented, used, and abused. Real-world examples of XSS malware show how it is a dangerous risk that exposes Internet users to remote access, sensitive data theft, and monetary losses. The book closes by examining the ways developers can guard against XSS vulnerabilities in their web applications, and how users can avoid becoming victims.
Cross-Site Scripting Attacks: XSS Exploits and Attacks, published by Syngress, is currently available on Amazon.com for $59.95 and is targeted toward web developers, security practitioners, and managers.