home • source • nvt

Web Security

Tools

• HTTP Security Report

Frontend

• cure53/H5SC: HTML5 Security Cheatsheet - A collection of HTML5 related XSS attack vectors
• 内容安全策略 (CSP) - Web 安全 | MDN
• XSS’OR - Hack with JavaScript
• XSS Filter Evasion Cheat Sheet | OWASP

Resources

• Session fixation - Wikipedia
• 聊一聊WEB前端安全那些事儿 - 前端小站 - SegmentFault