
Quick introduction about author
Introduction about course
Introduction about xss and workflow with attacker/victim scenerio
Covering some basics javascript you need to know for the course for great understanding of concepts
learning types of xss ,very first type which is reflected xss with real world cases, looking string escaping little complex examples which beginners face to understand .
Understanding some automation tips with reflected xss however i have also covered same things manually first
Understanding Persistent XSS or Stored XSS with automation tips in between the tutorial
Understanding DOM XSS with custom labs other labs ,understanding concept of source and sink in brief
Understanding automation that can be done for DOM XSS , uncovering solving the complex case to simple case
Basics about cookies,session and localstorage you need to know
basic javascript for cookies ,session and localstorage hijacking and conditions for account takeover using burp collaborator.
Now looking account takeover in workflow with the different payloads
looking for some xss restriction bypass technique that is encoding technique
what is sandbox , can we bypass sandbox restrictions ?? let see with real world example
Understanding how can an attacker redirects victim to any malicious domain
Understanding how victim keystrokes can be hijacked via attacker remotely with full payload making to real world example
Looking all the attacks open redirection , keylogger attack (keyhijacking attack)and content manipulation(website defacing attack) in practice with real target
Understanding how xss attack can be done via file uploads different cases and examples from real world
Understanding how an IDOR vulnerability can chained with Cross Site Scripting
How to find XSS via public CVE (Common vulnerability exploit) with real example
Understanding Scenerio of XSS via Subdomain Takeover
Understanding what is self xss and cases if self xss can be leveraged to possible reflected xss via understanding CSRF and CORS and same site policy terms
I have added a poc to demonstrate how a self-XSS impact can be increased and can be made a reflected XSS via chaining it with CSRF(Cross-Site Request Forgery).
NOTE: If you find yourself xss it will be informative or not very impactful but if you find a way to make it more impactful or simply affect the victim more broadly then it will be considered a valid issue.
Understanding some steps that can increase chance of finding cross site scripting using recon tools like
waybackurls
gau
gf
paramspider
arjun
dalfox
nuclei
there can be more recon tools which you can use but the concept will remain same .
Understanding the concept of Blind XSS and tool which we can use for blind XSS
Cross-site scripting is one of the known and important vulnerabilities in Bug bounty, cross scripting has ability to hijack user cookies and sessions and can possibly perform account takeover but nowadays due to increasing competition in bug bounty and more security in applications it is hard to find XSS issues we now have to rely on manual things rather than automation tools, scripts to find a better issue, in this course, I have covered a lot of fresh content and things which will be definitely new and interesting for you.
other than account takeovers I have covered other interesting attacks with xss like keylogger attacks, content manipulation attacks, and open redirection.
Additionally, i have covered the session where i am showing how you can chain xss with other vulnerabilities like file upload, IDOR etc.
From this course, you will be able to learn
Finding cross-site scripting in the real-world application
Learning how to build your own payloads for different types of attacks possible with cross-site scripting
understanding account takeovers via xss with understanding cookies, session, local storage and understanding conditions required for account takeover
Learning how to chain different vulnerabilities with xss with other vulnerabilities like file upload, IDOR(Indirect object reference), subdomain takeover, CVEs
Learning how to exploit using other vulnerabilities like open redirection, keylogger and content manipulation attack
Learning to bypass different restrictions of secure application
all the things are demonstrated via real targets and different labs resources
Disclaimer: All the things demonstrated in the course is for educational purpose only don't use this malicious or bad way to harm any other organisation