A section from SEC642 Advanced Web Application Penetration Testing! We will discuss how Cross Site Scripting and Cross Site Request Forgery can be used together in modern attacks. There will be a live demo!