期刊名称:International Journal of Computer Science and Information Technologies
电子版ISSN:0975-9646
出版年度:2015
卷号:6
期号:2
页码:1059-1067
出版社:TechScience Publications
摘要:As social websites get more and more users across internet, Cross Site Scripting is becoming one of the major problems, which results in serious consequences, such as theft of some personal trusted data and information. This Paper describes the possibilities of securing web applications on client side as well as on server side. The attacks are the worst because they are easy to make but very tough to be traced. Cross-Site Scripting is one of the major attacks of many Web based Applications. Web browsers support the execution of Malicious JavaScript and Attacker access the system feature maliciously to violate the security such as confidentiality. Networking sites (i.e. social network) provide the attacker with flexibility to put there malicious code into the web applications. Detecting these malicious script codes is very tough for client side; the detection can be done by using detection tools both at client end and server end as well. Our approach is to minimize theft space for such unlawful contents by using QualysGuard (WAS) tool, so to minimize the vulnerabilities to cause any harm to web applications. This paper will help us to overcome from this problem and elaborates on the possibilities to reduce this problem of Cross-Site Scripting attack to some extent.
关键词:XSS Cross Site Scripting;DOM Document;Object Model; HTML Hypertext Markup Language; HTTP;Hypertext Transfer Protocol; IDS Intrusion Detection System;URL Uniform Resource Locator; WAS Web Application;Scanning
