[Discover] Cross-site scripting - Wikipedia, the free encyclopedia http://en.wikipedia.org/wiki/Cross_site_scripting
(security javascript wikipedia xss) 
[Discover] http://www.cgisecurity.com/articles/xss-faq.shtml http://www.cgisecurity.com/articles/xss-faq.shtml (javascript faq xss tutorials)
[Discover] XSS (Cross Site Scripting) Cheatsheet: Esp: for filter evasion - by RSnake http://ha.ckers.org/xss.html (javascript security xss hacking)
[Discover] Whitepapers - www.technicalinfo.net http://www.technicalinfo.net/papers/CSS.html (tutorial javascript security scripting)
[Discover] Cross Site Scripting - OWASP http://www.owasp.org/index.php/Cross_Site_Scripting (security xss owasp javascri)
[Discover] HTML Purifier - Filter your HTML the standards-compliant way! http://htmlpurifier.org/ (library php filter security)
[Discover] XSS Introduction by Steve http://www.steve.org.uk/Hacks/XSS/index.html (xss security script)
[Discover] CERT/CC Understanding Malicious Content Mitigation For Web Developers http://www.cert.org/tech_tips/malicious_code_mitigation.html (scripting security reference hacking)
[Discover] SPIcross-sitescripting.pdf (application/pdf Object) http://www.spidynamics.com/whitepapers/SPIcross-sitescripting.pdf (papers spidynamics pdf security)
[Discover] http://www.wocares.com/noquote.php http://www.wocares.com/noquote.php (javascript tools security xss)
[Discover] It's a shampoo world anyway: Paper: SessionSafe - Implementing XSS Immune Session Handling http://shampoo.antville.org/stories/1586524/ (security xss papers todo)
[Discover] http://www.ihtb.org/security/xss_hacking_exposed.txt http://www.ihtb.org/security/xss_hacking_exposed.txt (xss)
[Discover] xssbuster - Google Code http://code.google.com/p/xssbuster/ (tools security xss)
[Discover] SecurityFocus - XSS Proxy http://www.securityfocus.com/archive/1/473312/30/0/threaded (security proxy xss papers)
[Discover] Net Cooties: Yahoo defect endangers users -- do web sites care? http://netcooties.blogspot.com/2007/06/yahoo-endangers-users-do-web-sites-care.html (hack javascript development security)
[Discover] Base64 and URL Encoding and Decoding http://ostermiller.org/calc/encode.html (javascript tools code decode)
[Discover] Nduja http://rosario.valotta.googlepages.com/home (security xss clientside research)
[Discover] Scanit - Excess - webmail XSS tester http://www.scanit.be/excess.html (tools email xss css)
[Discover] XSSed - XSS (cross-site scripting) information and vulnerable websites archive http://www.xssed.com/ (security xss hacking javascript)
[Discover] The Art of Software Security Assessment » Same-Origin Policy Part 1: Why we’re stuck with ... http://taossa.com/index.php/2007/02/08/same-origin-policy/ (security javascript ajax xsrf)
[Discover] sla.ckers.org web application security forum :: Full Disclosure :: Practical uses of XSS ( ... http://sla.ckers.org/forum/read.php?3,3843 (xss)
[Discover] XSS Vulnerabilities in Common Shockwave Flash Files http://docs.google.com/View?docid=ajfxntc4dmsq_14dt57ssdw&pli=1 (flash security xss)
[Discover] Anti XSS AJAX http://barmagy.com/blogs/infinite_loop/archive/2007/07/20/498.aspx (javascript tips to.cri.sig ajax)
[Discover] LocalRodeo - Client-side protection against JavaScript Malware http://databasement.net/labs/localrodeo/ (javascript dns security network)
[Discover] XSS — Википедия http://ru.wikipedia.org/wiki/XSS (security xss)
[Discover] Social engineering (security) | Wikipedia http://en.wikipedia.org/wiki/Social_engineering_(computer_security) (security wikipedia sociology communication)
[Discover] XSS post forwarder http://www.whiteacid.org/misc/xss_post_forwarder.php (security toread programming xss)
[Discover] XSS - Wikipedia, la enciclopedia libre http://es.wikipedia.org/wiki/XSS (security xss hacking)
[Discover] Cross Site Scripting - OWASP http://www.owasp.org/index.php/XSS (security owasp tips programming)
[Discover] software.dev » Blog Archive » Some simple XSS Attacks by Example http://ericfarraro.com/?p=8 (security xss example)
[Discover] A type-based solution to the "strings problem": a fitting end to XSS and SQL-injection holes? http://blog.moertel.com/articles/2006/10/18/a-type-based-solution-to-the-strings-problem (programming security haskell types)
[Discover] Cross-site request forgery - Wikipedia, the free encyclopedia http://en.wikipedia.org/wiki/Cross-site_request_forgery (security csrf javascript hacking)
[Discover] Cross Site Scripting http://www.sitepoint.com/blog-post-view?id=281643 (javascript security webdev xss)
[Discover] Chris Shiflett: Foiling Cross-Site Attacks http://shiflett.org/articles/foiling-cross-site-attacks (php security xss programming)
[Discover] HTML Purifier - Filter your HTML the standards-compliant way! http://hp.jpsband.org/ (security library php filter)
[Discover] Feed Injection in Web 2.0 http://www.spidynamics.com/assets/documents/HackingFeeds.pdf (security xml rss hacking)
[Discover] Web Security With Ingress Filtering - igvita.com http://www.igvita.com/blog/2007/04/27/web-security-with-ingress-filtering/ (security rubyonrails ruby rails)
[Discover] A List Apart: Articles: Community Creators, Secure Your Code! http://www.alistapart.com/articles/secureyourcode (security javascript xss css)
[Discover] Whitepapers - www.technicalinfo.net http://www.technicalinfo.net/papers/CSS.html (tutorial javascript security scripting)
[Discover] XSS (Cross Site Scripting) Cheatsheet: Esp: for filter evasion - by RSnake http://ha.ckers.org/xss.html (javascript security xss hacking)
[Discover] HTML Purifier - Filter your HTML the standards-compliant way! http://htmlpurifier.org/ (library php filter security)
[Discover] XSSed - XSS (cross-site scripting) information and vulnerable websites archive http://www.xssed.com/ (security xss hacking javascript)
[Discover] XSS-Proxy: A tool for realtime XSS hijacking and control http://xss-proxy.sourceforge.net/ (javascript security webdev xss)
[Discover] http://www.cgisecurity.com/articles/xss-faq.shtml http://www.cgisecurity.com/articles/xss-faq.shtml (javascript faq xss tutorials)
[Discover] Pixy: XSS and SQLI Scanner for PHP http://pixybox.seclab.tuwien.ac.at/pixy/webinterface.php (php security sql scanner)
[Discover] Google Online Security Blog: Automating web application security testing http://googleonlinesecurity.blogspot.com/2007/07/automating-web-application-security.html (security testing xss google)
[Discover] Technical explanation of myspace worm http://namb.la/popular/tech.html (security javascript hack myspace)
[Discover] Businessinfo web security applications & experiments http://businessinfo.co.uk/ (javascript development security xss)
[Discover] Web Application Penetration Testing http://www.cgisecurity.com/pen-test/?ref=2 (bruteforce injection sql pentest)
[Discover] Point Blank Security - Cross Site Scripting Blacklist #1 http://www.pointblanksecurity.com/xss/ (security xss)
[Discover] XSSDB http://www.gnucitizen.org/xssdb/ (security reference pentest xss)
[Discover] BlogSecurity » WordPress Scanner http://blogsecurity.net/wordpress/tools/wp-scanner/ (security wordpress scanner blog)
[Discover] Cross Site Scripting - OWASP http://www.owasp.org/index.php/Cross_Site_Scripting (security xss owasp javascri)
[Discover] Web Application Security - Joe Walker's Blog http://getahead.org/blog/joe/2007/10/29/web_application_security.html (security javascript ajax xss)
[Discover] ha.ckers.org web application security lab - Archive » Cross Site Printing http://ha.ckers.org/blog/20080108/cross-site-printing/ (security xss printing javascript)
[Discover] Don’t serve JSON as text/html http://jibbering.com/blog/?p=514 (javascript exploit security json)
[Discover] Mellow Morning » Introducing a cross site ajax plugin for Prototype http://www.mellowmorning.com/2007/10/25/introducing-a-cross-site-ajax-plugin-for-prototype/ (javascript prototype library programming)
[Discover] Comet Daily » Blog Archive » Cross Site Scripting Joy http://cometdaily.com/2007/12/04/cross-site-scripting-joy/ (javascript ajax crossdomain security)
[Discover] John Resig - Cross-Site XMLHttpRequest http://ejohn.org/blog/cross-site-xmlhttprequest/ (ajax javascript security xmlhttprequest)
[Discover] Category:OWASP CAL9000 Project - OWASP http://www.owasp.org/index.php/Category:OWASP_CAL9000_Project (security testing opensource hacking)
[Discover] PHP Classes - Class: PHP Input Filter http://www.phpclasses.org/browse/package/2189.html (php security input filter)
[Discover] DOM Based Cross Site Scripting http://www.webappsec.org/projects/articles/071105.html (security xss javascript dom)
[Discover] Five common Web application vulnerabilities http://www.securityfocus.com/infocus/1864 (penetration security testing network)
[Discover] Wapiti - Web application security auditor http://wapiti.sourceforge.net/ (testing python opensource programming)
[Discover] Mitigating Cross-site Scripting With HTTP-only Cookies (Internet Explorer - DHTML) http://msdn.microsoft.com/workshop/author/dhtml/httponly_cookies.asp (http microsoft cookie security)
[Discover] XSS, Cookies, and Session ID Authentication – Three Ingredients for a Successful Hack > The XSS ... http://www.informit.com/articles/article.asp?p=603037&rl=1 (security xss programming php)
[Discover] Category:OWASP Fuzzing Code Database - OWASP http://www.owasp.org/index.php/Category:OWASP_Fuzzing_Code_Database (directory sql xss owasp)
[Discover] Chris Shiflett: Foiling Cross-Site Attacks http://shiflett.org/articles/foiling-cross-site-attacks (php security xss programming)
[Discover] sklar.com : PHP and the OWASP Top Ten Security Vulnerabilities http://www.sklar.com/page/article/owasp-top-ten (php security programming authentication)
[Discover] Chris Shiflett: Character Encoding and XSS http://shiflett.org/blog/2007/may/character-encoding-and-xss (php encoding security xss)
[Discover] HTML Purifier - Filter your HTML the standards-compliant way! http://hp.jpsband.org/ (security library php filter)
[Discover] php security by example (flash demo) http://brainbulb.com/talks/php-security-by-example.swf (php security programming howto)
[Discover] A List Apart: Articles: Community Creators, Secure Your Code! http://www.alistapart.com/articles/secureyourcode (security javascript xss css)
[Discover] evan_tech -- myspace worm http://www.livejournal.com/community/evan_tech/150019.html (javascript security hacks scripting)
[Discover] bindshell - the cross-site scripting virus whitepaper http://www.bindshell.net/papers/xssv.html (security javascript virus xss)
[Discover] InformIT: XSS, Cookies, and Session ID Authentication – Three Ingredients for a Successful Hack > http://www.informit.com/articles/article.aspx?p=603037&seqNum=1 (pentest xss)
[Discover] Syngress Publishing - Cross Site Scripting Attacks: XSS Exploits and Defense http://www.syngress.com/catalog/?pid=4360 (development security xss)
[Discover] What XSS isn't http://neosmart.net/blog/archives/194 (security javascript xss exploits)
[Discover] Chris Shiflett: Myspace CSRF and XSS Worm (Samy) http://shiflett.org/archive/158 (javascript security xss article)
[Discover] SourceForge.net: XSS-Proxy http://sourceforge.net/projects/xss-proxy (security hacking xss tool)
[Discover] Mitigating Cross-site Scripting With HTTP-only Cookies http://msdn2.microsoft.com/en-us/library/ms533046.aspx (security javascript http xss)
[Discover] Real World XSS - Introduction http://sandsprite.com/Sleuth/papers/RealWorld_XSS_1.html (security xss hack toread)
[Discover] My Greasemonkey Scripts http://www.whiteacid.org/greasemonkey/#xss_assistant (security webapp tool tools)
[Discover] Cross Site Scripting Info http://httpd.apache.org/info/css-security/ (xss apache security)
[Discover] Remote Scripting with IFRAME http://developer.apple.com/internet/webcontent/iframe.html (javascript iframe html programming)
[Discover] Testing for Incubated Vulnerability - OWASP http://www.owasp.org/index.php/Testing_for_Incubated_Vulnerability (xss)
[Discover] OWASP http://www.owasp.org/ (security development architecture community)
[Discover] XSS, Cookies, and Session ID Authentication – Three Ingredients for a Successful Hack > Using ( ... http://www.informit.com/articles/article.asp?p=603037&seqNum=2&rl=1 (authentication hack session id)
[Discover] http://www.cgisecurity.com/articles/xss-faq.shtml http://www.cgisecurity.com/articles/xss-faq.shtml (javascript faq xss tutorials)
[Discover] XSS (Cross Site Scripting) Cheatsheet: Esp: for filter evasion - by RSnake http://ha.ckers.org/xss.html (javascript security xss hacking)
[Discover] Whitepapers - www.technicalinfo.net http://www.technicalinfo.net/papers/CSS.html (tutorial javascript security scripting)
[Discover] Cross Site Scripting - OWASP http://www.owasp.org/index.php/Cross_Site_Scripting (security xss owasp javascri)
[Discover] HTML Purifier - Filter your HTML the standards-compliant way! http://htmlpurifier.org/ (library php filter security)
[Discover] XSS Introduction by Steve http://www.steve.org.uk/Hacks/XSS/index.html (xss security script)
[Discover] CERT/CC Understanding Malicious Content Mitigation For Web Developers http://www.cert.org/tech_tips/malicious_code_mitigation.html (scripting security reference hacking)
[Discover] SPIcross-sitescripting.pdf (application/pdf Object) http://www.spidynamics.com/whitepapers/SPIcross-sitescripting.pdf (papers spidynamics pdf security)
[Discover] http://www.wocares.com/noquote.php http://www.wocares.com/noquote.php (javascript tools security xss)
[Discover] It's a shampoo world anyway: Paper: SessionSafe - Implementing XSS Immune Session Handling http://shampoo.antville.org/stories/1586524/ (security xss papers todo)
[Discover] http://www.ihtb.org/security/xss_hacking_exposed.txt http://www.ihtb.org/security/xss_hacking_exposed.txt (xss)
[Discover] xssbuster - Google Code http://code.google.com/p/xssbuster/ (tools security xss)
[Discover] SecurityFocus - XSS Proxy http://www.securityfocus.com/archive/1/473312/30/0/threaded (security proxy xss papers)
[Discover] Net Cooties: Yahoo defect endangers users -- do web sites care? http://netcooties.blogspot.com/2007/06/yahoo-endangers-users-do-web-sites-care.html (hack javascript development security)
[Discover] Base64 and URL Encoding and Decoding http://ostermiller.org/calc/encode.html (javascript tools code decode)
[Discover] Nduja http://rosario.valotta.googlepages.com/home (security xss clientside research)
[Discover] Scanit - Excess - webmail XSS tester http://www.scanit.be/excess.html (tools email xss css)
[Discover] XSSed - XSS (cross-site scripting) information and vulnerable websites archive http://www.xssed.com/ (security xss hacking javascript)
[Discover] Alex's Corner.....: Exploiting reflected XSS vulnerabilities, where user input must come through ... http://kuza55.blogspot.com/2007/07/exploiting-reflected-xss.html (security xss attacks webapp)
[Discover] The Art of Software Security Assessment » Same-Origin Policy Part 1: Why we’re stuck with ... http://taossa.com/index.php/2007/02/08/same-origin-policy/ (security javascript ajax xsrf)
[Discover] sla.ckers.org web application security forum :: Full Disclosure :: Practical uses of XSS ( ... http://sla.ckers.org/forum/read.php?3,3843 (xss)
[Discover] XSS Vulnerabilities in Common Shockwave Flash Files http://docs.google.com/View?docid=ajfxntc4dmsq_14dt57ssdw&pli=1 (flash security xss)
[Discover] Anti XSS AJAX http://barmagy.com/blogs/infinite_loop/archive/2007/07/20/498.aspx (javascript tips to.cri.sig ajax)
[Discover] LocalRodeo - Client-side protection against JavaScript Malware http://databasement.net/labs/localrodeo/ (javascript dns security network)
[Discover] XSS — Википедия http://ru.wikipedia.org/wiki/XSS (security xss)
[Discover] Social engineering (security) | Wikipedia http://en.wikipedia.org/wiki/Social_engineering_(computer_security) (security wikipedia sociology communication)
[Discover] XSS post forwarder http://www.whiteacid.org/misc/xss_post_forwarder.php (security toread programming xss)
[Discover] XSS - Wikipedia, la enciclopedia libre http://es.wikipedia.org/wiki/XSS (security xss hacking)
[Discover] Cross Site Scripting - OWASP http://www.owasp.org/index.php/XSS (security owasp tips programming)
[Discover] software.dev » Blog Archive » Some simple XSS Attacks by Example http://ericfarraro.com/?p=8 (security xss example)
[Discover] A type-based solution to the "strings problem": a fitting end to XSS and SQL-injection holes? http://blog.moertel.com/articles/2006/10/18/a-type-based-solution-to-the-strings-problem (programming security haskell types)
[Discover] Cross-site request forgery - Wikipedia, the free encyclopedia http://en.wikipedia.org/wiki/Cross-site_request_forgery (security csrf javascript hacking)
[Discover] Cross Site Scripting http://www.sitepoint.com/blog-post-view?id=281643 (javascript security webdev xss)
[Discover] Chris Shiflett: Foiling Cross-Site Attacks http://shiflett.org/articles/foiling-cross-site-attacks (php security xss programming)
[Discover] HTML Purifier - Filter your HTML the standards-compliant way! http://hp.jpsband.org/ (security library php filter)
[Discover] Feed Injection in Web 2.0 http://www.spidynamics.com/assets/documents/HackingFeeds.pdf (security xml rss hacking)
[Discover] Web Security With Ingress Filtering - igvita.com http://www.igvita.com/blog/2007/04/27/web-security-with-ingress-filtering/ (security rubyonrails ruby rails)
[Discover] A List Apart: Articles: Community Creators, Secure Your Code! http://www.alistapart.com/articles/secureyourcode (security javascript xss css)
[Discover] Whitepapers - www.technicalinfo.net http://www.technicalinfo.net/papers/CSS.html (tutorial javascript security scripting)
[Discover] XSS (Cross Site Scripting) Cheatsheet: Esp: for filter evasion - by RSnake http://ha.ckers.org/xss.html (javascript security xss hacking)
[Discover] HTML Purifier - Filter your HTML the standards-compliant way! http://htmlpurifier.org/ (library php filter security)
[Discover] XSSed - XSS (cross-site scripting) information and vulnerable websites archive http://www.xssed.com/ (security xss hacking javascript)
[Discover] XSS-Proxy: A tool for realtime XSS hijacking and control http://xss-proxy.sourceforge.net/ (javascript security webdev xss)
[Discover] http://www.cgisecurity.com/articles/xss-faq.shtml http://www.cgisecurity.com/articles/xss-faq.shtml (javascript faq xss tutorials)
[Discover] Pixy: XSS and SQLI Scanner for PHP http://pixybox.seclab.tuwien.ac.at/pixy/webinterface.php (php security sql scanner)
[Discover] Google Online Security Blog: Automating web application security testing http://googleonlinesecurity.blogspot.com/2007/07/automating-web-application-security.html (security testing xss google)
[Discover] Technical explanation of myspace worm http://namb.la/popular/tech.html (security javascript hack myspace)
[Discover] Businessinfo web security applications & experiments http://businessinfo.co.uk/ (javascript development security xss)
[Discover] Web Application Penetration Testing http://www.cgisecurity.com/pen-test/?ref=2 (bruteforce injection sql pentest)
[Discover] Point Blank Security - Cross Site Scripting Blacklist #1 http://www.pointblanksecurity.com/xss/ (security xss)
[Discover] XSSDB http://www.gnucitizen.org/xssdb/ (security reference pentest xss)
[Discover] BlogSecurity » WordPress Scanner http://blogsecurity.net/wordpress/tools/wp-scanner/ (security wordpress scanner blog)
[Discover] Cross Site Scripting - OWASP http://www.owasp.org/index.php/Cross_Site_Scripting (security xss owasp javascri)
[Discover] Web Application Security - Joe Walker's Blog http://getahead.org/blog/joe/2007/10/29/web_application_security.html (security javascript ajax xss)
[Discover] ha.ckers.org web application security lab - Archive » Cross Site Printing http://ha.ckers.org/blog/20080108/cross-site-printing/ (security xss printing javascript)
[Discover] Don’t serve JSON as text/html http://jibbering.com/blog/?p=514 (javascript exploit security json)
[Discover] Mellow Morning » Introducing a cross site ajax plugin for Prototype http://www.mellowmorning.com/2007/10/25/introducing-a-cross-site-ajax-plugin-for-prototype/ (javascript prototype library programming)
[Discover] Comet Daily » Blog Archive » Cross Site Scripting Joy http://cometdaily.com/2007/12/04/cross-site-scripting-joy/ (javascript ajax crossdomain security)
[Discover] John Resig - Cross-Site XMLHttpRequest http://ejohn.org/blog/cross-site-xmlhttprequest/ (ajax javascript security xmlhttprequest)
[Discover] Category:OWASP CAL9000 Project - OWASP http://www.owasp.org/index.php/Category:OWASP_CAL9000_Project (security testing opensource hacking)
[Discover] PHP Classes - Class: PHP Input Filter http://www.phpclasses.org/browse/package/2189.html (php security input filter)
[Discover] DOM Based Cross Site Scripting http://www.webappsec.org/projects/articles/071105.html (security xss javascript dom)
[Discover] Five common Web application vulnerabilities http://www.securityfocus.com/infocus/1864 (penetration security testing network)
[Discover] Wapiti - Web application security auditor http://wapiti.sourceforge.net/ (testing python opensource programming)
[Discover] Mitigating Cross-site Scripting With HTTP-only Cookies (Internet Explorer - DHTML) http://msdn.microsoft.com/workshop/author/dhtml/httponly_cookies.asp (http microsoft cookie security)
[Discover] XSS, Cookies, and Session ID Authentication – Three Ingredients for a Successful Hack > The XSS ... http://www.informit.com/articles/article.asp?p=603037&rl=1 (security xss programming php)
[Discover] Category:OWASP Fuzzing Code Database - OWASP http://www.owasp.org/index.php/Category:OWASP_Fuzzing_Code_Database (directory sql xss owasp)
[Discover] Chris Shiflett: Foiling Cross-Site Attacks http://shiflett.org/articles/foiling-cross-site-attacks (php security xss programming)
[Discover] sklar.com : PHP and the OWASP Top Ten Security Vulnerabilities http://www.sklar.com/page/article/owasp-top-ten (php security programming authentication)
[Discover] Chris Shiflett: Character Encoding and XSS http://shiflett.org/blog/2007/may/character-encoding-and-xss (php encoding security xss)
[Discover] HTML Purifier - Filter your HTML the standards-compliant way! http://hp.jpsband.org/ (security library php filter)
[Discover] php security by example (flash demo) http://brainbulb.com/talks/php-security-by-example.swf (php security programming howto)
[Discover] A List Apart: Articles: Community Creators, Secure Your Code! http://www.alistapart.com/articles/secureyourcode (security javascript xss css)
[Discover] evan_tech -- myspace worm http://www.livejournal.com/community/evan_tech/150019.html (javascript security hacks scripting)
[Discover] bindshell - the cross-site scripting virus whitepaper http://www.bindshell.net/papers/xssv.html (security javascript virus xss)
[Discover] InformIT: XSS, Cookies, and Session ID Authentication – Three Ingredients for a Successful Hack > http://www.informit.com/articles/article.aspx?p=603037&seqNum=1 (pentest xss)
[Discover] Syngress Publishing - Cross Site Scripting Attacks: XSS Exploits and Defense http://www.syngress.com/catalog/?pid=4360 (development security xss)
[Discover] What XSS isn't http://neosmart.net/blog/archives/194 (security javascript xss exploits)
[Discover] Chris Shiflett: Myspace CSRF and XSS Worm (Samy) http://shiflett.org/archive/158 (javascript security xss article)
[Discover] SourceForge.net: XSS-Proxy http://sourceforge.net/projects/xss-proxy (security hacking xss tool)
[Discover] Mitigating Cross-site Scripting With HTTP-only Cookies http://msdn2.microsoft.com/en-us/library/ms533046.aspx (security javascript http xss)
[Discover] Real World XSS - Introduction http://sandsprite.com/Sleuth/papers/RealWorld_XSS_1.html (security xss hack toread)
[Discover] My Greasemonkey Scripts http://www.whiteacid.org/greasemonkey/#xss_assistant (security webapp tool tools)
[Discover] Cross Site Scripting Info http://httpd.apache.org/info/css-security/ (xss apache security)
[Discover] Remote Scripting with IFRAME http://developer.apple.com/internet/webcontent/iframe.html (javascript iframe html programming)
[Discover] Testing for Incubated Vulnerability - OWASP http://www.owasp.org/index.php/Testing_for_Incubated_Vulnerability (xss)
[Discover] OWASP http://www.owasp.org/ (security development architecture community)
[Discover] XSS, Cookies, and Session ID Authentication – Three Ingredients for a Successful Hack > Using ( ... http://www.informit.com/articles/article.asp?p=603037&seqNum=2&rl=1 (authentication hack session id)