Professional Documents
Culture Documents
Cross-Site-Scripting (XSS) Ravi 22 09
Cross-Site-Scripting (XSS) Ravi 22 09
Cross-Site-Scripting (XSS) Ravi 22 09
attack
4. Message scenarios!
is delivered by server Client
5. Browser executes script in message !!! attack code !!!
4
12/09/2021 Division Of Computer Engineering, SOE 5
Required Tools:-
1. Computer
2. Internet
3. Mozila Firefox 3.0 or Higher
4. Firebug Add-on for Mozila
5. Firecookie extension for Firebug
6. Targer website(www.shtyle.fm)
7. Web Hosting
e.g: www.0fees.net,5gigs.net
7.Then, attacker open that text file,get the cookie name and
values.
?>
2. Logoff immediately after using a Web application as attacker can not use
your cookie if you logoff.
4. Notice and be careful with the link that you want to click