[B! sanitizer][microsoft] teppeisのブックマーク

teppeis id:teppeis

sanitizerとmicrosoftに関するteppeisのブックマーク (2)

Insane in the IFRAME -- The case for client-side HTML sanitization
Insane in the IFRAME -- The case for client-side HTML sanitization Server-side HTML sanitization is a familiar web application building block, yet despite years of offensive security research, defensive “sanitizer science” is still a kind of voodoo magic. This talk will make the case that as server-side HTML sanitizers lack the ability to effectively simulate every potential user agent, the client
teppeis 2015/11/06
OWASP AppSec EU 2013でのMicrosoft JSanityのプレゼンスライド

xss

microsoft

sanitizer
リンク
GitHub - microsoft/JSanity: A secure-by-default, performance, cross-browser client-side HTML sanitization library
You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session. Dismiss alert
teppeis 2015/11/06
Microsoft製DOMサニタイザ。DOMPurifyと同じくdocument.implementation.createHTMLDocumentベースの実装。IE9+サポート

microsoft

security

xss

sanitizer
リンク
1

お知らせ

もっと読む

公式Twitter

@HatenaBookmark
リリース、障害情報などのサービスのお知らせ
@hatebu
最新の人気エントリーの配信

キーボードショートカット一覧

j次のブックマーク

k前のブックマーク

lあとで読む

eコメント一覧を開く

oページを開く

設定を変更しましたx