Yesterday I was on a meeting of the OWASP Switzerland Local Chapter and had a presentation about XSS-Worms there. I already had such a presentation in the past at the Cosin06 but I did a complete renew of the presentation and it seems that the content is interesting when I look at the good feedbacks I’ve got from the people who were attending my presentation yesterday. The main difference is, that I’m not only talking about the worm, I also talking about the potential risks. Especially I present in this presentation an AFAIK new topic, it’s the topic of webbased (dynamic) botnets and in the presentation I also talk about how to control such a botnet from an attackers point of view. Of course I putted my presentation online that everyone can have a look at it, even if it’s not the same as when I can talk to it and explain my thoughts on it.

Download the XSS-Worm Presentation now

Of course at this point, a thankyou goes to Jeremiah Grossman because he did some really cool stuff in the past which had an impact to the stuff in my presentation.