DevConf.CZ 2020 has ended
Back To Schedule
Saturday, January 25 • 12:30pm - 1:25pm
The XSS Files, the security is out there

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
With the exemple of the project Fedora infrastructure and the dozens of custom business application written by members of the projects, this talk will examine the issues regarding XSS (cross site scripting, injecting javascript code in webpage) in web applications, how to find thoses issues, why they are more serious than usually believed and how you can detect and mitigate them with modern framework. The talk will mostly focus on the result of a audit of Pagure, a git forge written in Python, but the methodologies will be applicable to any applications, no matter the technology.


Michael Scherer

sitting on a chair right now, but I stand from time to time, Red Hat

Saturday January 25, 2020 12:30pm - 1:25pm CET
E105 Faculty of Information Technology Brno University of Technology, Božetěchova, Brno-Královo Pole, Czechia