参考链接
========================================

wiki
----------------------------------------
- `AwesomeXSS <https://github.com/UltimateHackers/AwesomeXSS>`_
- `w3c <https://w3c.github.io/webappsec-csp/>`_
- `dom xss wiki <https://github.com/wisec/domxsswiki/wiki>`_
- `content-security-policy.com <https://content-security-policy.com/>`_
- `markdwon xss <https://shubs.io/exploiting-markdown-syntax-and-telescope-persistent-xss-through-markdown-cve-2014-5144/>`_
- `xss cheat sheet <https://brutelogic.com.br/blog/cheat-sheet/>`_
- `html5 security cheatsheet <https://html5sec.org/>`_
- `http security headers <https://www.netsparker.com/whitepaper-http-security-headers/>`_
- `XSSChallengeWiki <https://github.com/cure53/XSSChallengeWiki/wiki>`_

Challenges
----------------------------------------
- `XSS Challenge By Google <https://xss-game.appspot.com>`_
- `prompt to win <http://prompt.ml/0>`_

CSS
----------------------------------------
- `rpo <http://www.thespanner.co.uk/2014/03/21/rpo/>`_
- `rpo攻击初探 <http://www.zjicmisa.org/index.php/archives/127/>`_
- `Reading Data via CSS <https://curesec.com/blog/article/blog/Reading-Data-via-CSS-Injection-180.html>`_
- `css based attack abusing unicode range <http://mksben.l0.cm/2015/10/css-based-attack-abusing-unicode-range.html>`_
- `css injection <https://speakerdeck.com/lmt_swallow/css-injection-plus-plus-ji-cun-shou-fa-falsegai-guan-todui-ce>`_
- `css timing attack <https://blog.sheddow.xyz/css-timing-attack/>`_

同源策略
----------------------------------------
- `Same origin policy <https://developer.mozilla.org/en-US/docs/Web/Security/Same-origin_policy>`_
- `cors security guide <https://www.bedefended.com/papers/cors-security-guide>`_
- `logically bypassing browser security boundaries <https://speakerdeck.com/shhnjk/logically-bypassing-browser-security-boundaries>`_

bypass
----------------------------------------
- `666 lines of xss payload <https://gist.github.com/JohannesHoppe/5612274>`_
- `xss auditor bypass <https://github.com/masatokinugawa/filterbypass>`_
- `xss auditor bypass writeup <https://www.leavesongs.com/HTML/chrome-xss-auditor-bypass-collection.html>`_
- `bypassing-csp-using-polyglot-jpegs <https://portswigger.net/blog/bypassing-csp-using-polyglot-jpegs>`_

持久化
----------------------------------------
- `变种XSS 持久控制 by tig3r <http://drops.wooyun.org/web/10798>`_
- `Using Appcache and ServiceWorker for Evil <https://sakurity.com/blog/2015/08/13/middlekit.html>`_