期刊名称:Journal of Theoretical and Applied Information Technology
印刷版ISSN:1992-8645
电子版ISSN:1817-3195
出版年度:2017
卷号:95
期号:6
出版社:Journal of Theoretical and Applied
摘要:Internet has changed the world, today almost everyone connected to the Internet indicated the percentage of penetration of internet users in the world is increasing which caused the change in targeted cyberattacks to individual targets. Reported eight of the top ten websites in the world are at a critical point of vulnerability from attacks by injection methods such as Cross Site Scripting and SQL Injection that can be used by certain parties to steal information or for a particular purpose. In this paper the research conducted by three key stages: first Attacking (Single Victim Attack: Information Gathering, Live Webcams Screenshot, Keyloggers and Download Spoofer), second stage Analysis (Digital Forensic: Live Forensic and Analysis Evidence) and third stage to Prevent (Patching). Contribution of this study offers a method of protection solutions to users in the browser application to be filtered, disable the plugin, notifying, blocking, and reducing Cross Site Scripting attacks.
关键词:Live Forensic; Cross Site Scripting; OWASP; Xenotix
