BEGIN:VCALENDAR VERSION:2.0 PRODID:-//pretalx//pretalx.hackglasgow.live//hack-glasgow-2026//talk//3S9UZ P BEGIN:VTIMEZONE TZID:GMT BEGIN:STANDARD DTSTART:20001029T030000 RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=10 TZNAME:GMT TZOFFSETFROM:+0100 TZOFFSETTO:+0000 END:STANDARD BEGIN:DAYLIGHT DTSTART:20000326T020000 RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=3 TZNAME:BST TZOFFSETFROM:+0000 TZOFFSETTO:+0100 END:DAYLIGHT END:VTIMEZONE BEGIN:VEVENT UID:pretalx-hack-glasgow-2026-3S9UZP@pretalx.hackglasgow.live DTSTART;TZID=GMT:20260815T130000 DTEND;TZID=GMT:20260815T150000 DESCRIPTION:*What is JavaScript? Who is a HTML and what are they doing in m y browser?* If you ask these sort of questions - this is the workshop for you. You may have heard of Cross-Site Scripting in passing\, you may not h ave\, but after this you will understand what it is\, what you can do with it\, and be well on your way to finding it in simpler web apps.\n\nCross- Site Scripting (XSS for short) is one of the fundamental vulnerabilities a ll junior AppSec professions need to have a solid grasp of. Understanding why XSS is an issue\, how it is introduced into applications\, and ultimat ely how to begin finding it is a vital step on anyones AppSec journey.\n\n We will start with a basic overview of what a website is made up of (HTML/ JS/CSS)\, then the difference between dynamic and static pages\, and onto how user-supplied content ends up in pages. We then move onto exploring ho w we might provide malicious content\, exploring what we used to demonstra te execution (`alert(1)`) . This workshop is supported by custom labs to r einforce the learning.\n\nWhilst this is aimed at complete beginners\, by the end of the two hours you should have a solid understanding of what XSS is\, but more importantly *why* it ends up in applications. This depth of understanding will help any person within the AppSec field.\n\nThis is a workshop aimed at folks brand new to web security\, or people wanting to g et into AppSec in the future. DTSTAMP:20260611T152330Z LOCATION:Workshops SUMMARY:Understanding alert(1) - Liam Follin (gr4y-r0se) URL:https://pretalx.hackglasgow.live/hack-glasgow-2026/talk/3S9UZP/ END:VEVENT END:VCALENDAR