Basic concepts and basic ideas of XSS basics for web security attack and defense

Others 2021-02-27 07:46:55 views: null

1 Introduction and comparison

XSS attacks can be divided into three types

  1. Reflective type: one-time, spread by mail, need to go through the server
  2. Dom type (Document Object Model): One-time, no need to go through the server (no message sent)
  3. Storage type: Persistent, usually appear in the message board, usually in a trusted link (familiar forum website)

Both the reflection type and the storage type need to send information to the outside and return it after passing through the server, while the DOM type is parsed and executed by the local browser.

The simplest check method to distinguish between reflective and DOM is "Burp capture". If Burp captures data, it is reflective, and if it cannot capture data, it is DOM. (Teached by Master Tong Tong during the interview

The DOM type and the reflection type are usually used by the attacker to construct the URL, and the storage type is the input point for constructing the payload test website.

  • DOM type: data => client
  • Reflective type: data => server => client
  • Storage type: data => server => database => client

2 Defense against XSS

XSS repair is divided into two parts: input and output. Through filtering, the entered malicious code is intercepted to the outside (similar to the security check of an airplane). You must also pay attention to the output, otherwise the malicious code entered in the past may also cause XSS.

  1. Filter illegal characters such as', ", <, >, on*.
  2. The data output to the page requires HTML entity coding and Javascript coding.

3 Basic idea

  • The existence of XSS must be accompanied by the two concepts of input and output (so input filtering and output coding are required for defense in defense). It is not convenient to filter when outputting. If 3<5 is written in the article, it will only be 3 to 5 after being filtered. Therefore, coding defenses are often used in output instead of filtering.
  • XSS and SQL injection are similar. Both text is executed as code. The difference is that XSS code is executed on the client side, and SQL injection code is executed on the server side.

Guess you like

Origin blog.csdn.net/qq_43085611/article/details/113246985
Recommended
Ranking
#2019110700005
What materials and procedures are required for patent transfer
What is the blockchain Ethereum triplet state root transaction root receipt root
Front-end study notes 04 --- About the insertion of html pictures and videos
Documents required for the filing of WeChat Mini Programs in special industries, the filing process of WeChat Mini Programs in special industries, how to file WeChat Mini Programs in special industries
2017 Qingdao-site tournament I The Squared Mosquito Coil
[BZOJ3165][HEOI2013]Segment (line segment tree without marking)
Kettle series: KettleEasyExpand, an open source Kettle universal plugin by Ma Jinju
The latest tutorial on making framework for iOS
DAX Section 6: Statistical Functions
Daily
More
2024-05-14(9)
2024-05-13(8)
2024-05-12(28)
2024-05-11(32)
2024-05-10(34)
2024-05-09(32)
2024-05-08(18)
2024-05-07(34)
2024-05-06(6)
2024-05-05(0)

Code World

© 2018 codetd.com