top of page

How Output Encoding Stops Cross-site Script (XSS) Attacks

Writer's picture: Jeremy DruinJeremy Druin

Updated: Feb 22, 2021

Output encoding is a powerful defense against cross-site script (XSS) attacks. Output encoding clearly marks information in web pages as data so the browser will not execute the snippet even if the snippet happens to be a script. Watch this video to see output encoding controls in action.





Recent Posts

See All

Comments


© 2014-2025 by Ellipsis Information Security LLC

  • Twitter Metallic
  • LinkedIn App Icon
  • YouTube Long Shadow
bottom of page