Upload File

xss-100908063522-phpapp02

31
Cross Site Scripting (XSS) by Amit Tyagi

Upload: garland-neal

Post on 04-Oct-2015

214 views

Category:

Documents


0 download

Report

Tags:

DESCRIPTION

asdfdfsds

TRANSCRIPT

XSS

Cross Site Scripting (XSS)by Amit TyagiWhat is XSSCross Site ScriptingXSS is a vulnerability which when present in websites or web applications, allows malicious users (Hackers) to insert their client side code (normally JavaScript) in those web pages. When this malicious code along with the original webpage gets displayed in the web client (browsers like IE, Mozilla etc), allows Hackers to gain greater access of that page.

XSS (-ve) effects stealing other users cookies stealing their private information performing actions on behalf of other users redirecting to other websitesShowing ads in hidden IFRAMES and pop-ups How XSS worksWeb server gets data from web client (POST, GET, COOKIES etc) with the request. So a malicious User can include client side code snippets (JavaScript) into the data. For example : Amitalert (this site has been hacked) ;

XSS input

Note: This image has been created using Firebug and this XSS hole is not present in google.comXSS contd.Lets assume Web server performs no validation or filtration on this data.Now web server either saves this data + XSS code to some persistent storage (like database) or print this data back in the HTML.When this XSS code, comes from server along with HTML into the web client (Browser) and executes as servers own code, it gets access whole HTML document, page URL, cookies etc.

XSS ServerHackers Browserhttp request with XSS JavaScriptHackers Browserhttp response with XSS JavaScriptXSS output

Note: This image has been created using Firebug and this XSS hole is not present in google.comXSS vectors

Type of XSS attacksNon-persistentPersistentDOM Based

Non-persistentWhen XSS code only gets displayed in the next page to the same user and not gets saved into persistent storage like database. This type of attack is less vulnerable, because Hacker can see only their own cookies and can make modifications in their own current opened pages. The risk with these kinds of XSS holes is that it opens way for Cross Site Request Forgery CSRF. CSRF allows a hacker to place some links

Example : same as given previously to explain XSS

CSRFCross-site request forgery is a type of malicious exploit of a website whereby unauthorized commands are transmitted from a user that the website trusts. This can be done by placing some hidden links in some bad website.

for example :


Netscaler WAF XSS

Root via XSS

XSS-GUARD : Precise Dynamic Prevention of Cross Site Scripting (XSS) Attacks

Complete xss walkthrough

Xss for fun_and_profit_scg09

XSS Without Browser

Building Advanced XSS Vectors - Brute XSS · About - Presentation Not just another talk on XSS Use of alert(1) for didactic purposes Mainly about event based XSS Some stuff may be

XSS ATACKS

iPlanet NG-XSS Vulnerability Analysiszhodiac.hispahack.com/my-stuff/security/Iplanet-NG-XSS-analysis.pdfiPlanet NG-XSS Vulnerability NGSEC’s White Paper Date: 11/05/2002 • Administrator

Grails vs XSS: Defending Grails against XSS attacks

XSS Attacks

Srikar Nadipally. Outline Finding and Exploiting XSS Vulnerabilities Standard Reflected XSS Stored XSS DOM based XSS Prevention of XSS attack Reflect

XSS Horror Show scary XSS vectors About me Researcher for Portswigger (makers of Burp suite) JavaScript XSS hacker I love JavaScript sandboxes Built

XSS and CSRFcs261/fa17/readings/XSSCSRF.pdf · A2 – Cross-Site Scripting (XSS) A3 – Cross-Site Scripting (XSS) A4 – Insecure Direct Object References A4 – Insecure Direct

Xss a fondo

XSS Remediation

SEALER LD-Xss RTE - dvpg.com Sealers/Loveshaw LD-XSS-RTE Brochure.pdfLD-Xss RTE WASH DOWN CASE SEALER The LD-Xss RTE is a redesign of our revolutionary wash down stainless steel case

What Is XSS ? ! Cross-site scripting (XSS) is a type of computer security vulnerability typically found in Web applications. XSS enables attackers to

Stylish XSS

XSS Desvendado

Combinatorial XSS Attack Grammars - SBA Research · Combinatorial XSS Attack Grammars XSS Vectors for ... SBA Research April 10, 2015 SBA Research, Vienna. Outline Introduction XSS

CSP - the panacea for XSS - owasp.org another security blogger . XSS. 4 XSS ... Over 12 million email messages daily ... CSP Based IDS Magic XSS XSS XSS Test & Fix . 29

XSS Complete Guide

Dom based xss

XSS Documentation

Universal XSS via IE8s XSS Filters - Black Hat Briefings · Universal XSS via IE8s XSS Filters the sordid tale of a wayward hash sign slides:

XSS - brutelogic.com.brbrutelogic.com.br/docs/XSS-FTW.pdf · Agenda Fast Intro to XSS Dangers of XSS Virtual Defacement LSD - Leakage, Spying and Deceiving Account Stealing Memory

XSS Vulnerabilities

XSS Injection Vulnerabilities

DOM-based XSS

XSS Lightning talk

PRELIMINARY SLIDESconference.hackinthebox.org/hitbsecconf2012kul... · • 2007 - Orkut Worm • 2008 - Yahoo IM XSS • 2009 - Twitter hit by multiple XSS variants, Memova XSS •

Ess xss homepage_framework_ecc_50_erp_2004

Is XSS Solvable?

Xss Attacks Faq