LAB 351 – Defending TypeScript Applications Against Cross-Site Scripting (NEW)

Course Overview

Cross-site scripting is a vulnerability that allows attackers to modify web content a web application presents to other users. Cross-site scripting allows an attacker to present malicious content to legitimate users within the context of a vulnerable application. This vulnerability type is caused by not encoding user-supplied data correctly when including the user-supplied data in web application output.

This Skill Lab provides a virtual environment that contains a vulnerable application with its complete source code for training developers to identify and remediate Cross-Site Scripting vulnerabilities.

In this lab, the learner will receive hands-on experience testing for a Cross-Site Scripting vulnerability and implementing an appropriate mitigation. The typical solution is to encode user-supplied input correctly for the context in which the user-supplied data will appear when included in the web application output.