Specific Protection for Content and Browsers
- Content Security Policy: HTTP response header helps you reduce XSS risks on modern browsers by declaring what dynamic resources are allowed to load via a HTTP Header (preventing XSS)
- CORS: Cross-Origin HTTP Request
- XSS Game: (XSS) bugs are one of the most common and dangerous types of vulnerabilities in Web applications
- ADSI: Alternate Data Stream (reading/writing, TechNet). Installation