TAILIEUCHUNG - Lecture notes on Computer and network security: Lecture 28 - Avinash Kak

Lecture 28 - Web security: Cross-site scripting and other browser-side exploits. The goals of this chapter are: JavaScript for handling cookies in your browser, server-side cross-site scripting vs. client-side cross-site scripting, client-side cross-site scripting attacks, heap spray attacks, the w3af framework for testing web applications. | Lecture 28: Web Security: Cross-Site Scripting and Other Browser-Side Exploits Lecture Notes on “Computer and Network Security” by Avi Kak (kak@) April 19, 2016 12:16am c 2016 Avinash Kak, Purdue University Goals: • JavaScript for handling cookies in your browser • Server-side cross-site scripting vs. client-side cross-site scripting • Client-side cross-site scripting attacks • Heap spray attacks • The w3af framework for testing web applications CONTENTS Section Title Page Cross-Site Scripting — Once Again 3 JavaScript: Some Quick Highlights 5 Managing Cookies with JavaScript 9 Getting JavaScript to Download Information from a Server 22 Exploiting Browser Vulnerabilities 29 Stealing Cookies with a Cross-Site Scripting Attack 31 The Heap Spray Exploit 39 The w3af Framework for Testing a Web Application for Its Vulnerabilities 47 2 Computer and Network Security by Avi Kak Lecture 28 : Cross-Site Scripting — Once Again • Earlier in Section of Lecture 27 you saw an example of a server-side cross-site scripting attack through server-side injection of malicious code. In this section here, I will now give an example of a client-side cross-site scripting attack. • As mentioned in Lecture 27, a cross-site scripting attack, abbreviated as XSS, commonly involve three parties. For the server-side XSS, the three parties are the attacker, a web-hosting service, and an innocent victim whose web browser is being exploited. • For the client-side XSS, we again have three parties: an attacker whose goal is to get an innocent victim to click on a JavaScript bearing URL in order to cause the victim’s browser to exfiltrate the cookies to a third party or to download malicious browser exploiting code from third parties. A client-side XSS is an example of UXSS, which stands for Universal XSS. [See the paper “Subverting Ajax” by Stefano Di Paola and Giorgio Fedon for other examples of UXSS. .

• An ninh - Bảo mật
• Network security
• Lecture notes on Computer and network security
• Web security
• Cross site scripting
• Browser side exploits
• Server side cross site scripting
• security rules
• encryption techniques
• security techniques
• Security chat rooms
• especially
• Network Security Tools
• CCNA Security
• Lecture CCNA Security
• Modern Network Security Threats
• Evolution of Network Security
• Drivers for Network Security
• Network Perimeter
• Network Perimeter Security
• Network Security Principles
• Cryptography
• IDS Tools
• CGI attacks
• network intruders
• Managing Security
• Wireless
• Wireless Network Security
• attack techniques
• defensive techniques
• operating system security
• application security
• security policy
• Network Security Fundamentals
• Guide to Network Security Fundamentals
• Information security
• Define information security
• Information security careers
• Operational security
• Harden physical security
• Secure the physical environment
• Mobile device security
• Lecture Network security
• Computer network
• Computer hacking
• Internet security
• Network security model
• Securing the Network Infrastructure
• Network cable plant
• Secure removable media
• Network security hacks
• Ebook Network security hacks
• Network security technologies
• Unix host security
• Windows host security
• Wireless Security
• Advanced security
• Computer forensics
• Harden security
• Network Management Security
• Management Security
• security mechanisms
• security services
• security architecture
• encryption system
• Security principles
• Effective authentication methods
• Control access to computer systems
• Security Baselines
• Disable nonessential systems
• Harden operating systems
• Protect e mail systems
• World Wide Web vulnerabilities
• Security policy cycle
• Risk identification
• Security management
• Identity management
• Plan for change management
• CompTIA® Security+
• CompTIA Security+ certification
• Linux file manipulation tools
• Internal physical security controls
• Network hardware security modules