Persistent cross-site scripting vulnerability detection
First Claim
1. A method for detecting a persistent cross-site scripting vulnerability comprising:
- inserting, via a processor, a client-side script as input into a web application;
requesting, via the processor, data from the web application;
in response to requesting the data, detecting that resource is sent from a client device to an external computing device in response to execution of the client-side script on the client device, wherein the external computing device is a different device than the client device;
receiving at the external computing device, the inserted client-side script in response to requesting data from the web application;
receiving from the external computing device, the inserted client-side script, in response to receiving the client-side script at the external computing device;
detecting, via the processor, that the client-side script is subsequently returned unaltered via the data request by comparing the inserted client-side script with the received client side script, and that execution of the client-side script occurs.
2 Assignments
0 Petitions
Accused Products
Abstract
Various techniques for detecting a persistent cross-site scripting vulnerability are described herein. In one example, a method includes detecting, via the processor, a read operation executed on a resource using an instrumentation mechanism and returning, via the processor, a malicious script in response to the read operation. The method also includes detecting, via the processor, a write operation executed on the resource using the instrumentation mechanism and detecting, via the processor, a script operation executed by the malicious script that results in resource data being sent to an external computing device from a client device. Furthermore, the method includes receiving, via the processor, metadata indicating the execution of the read operation, the write operation, and the script operation.
32 Citations
6 Claims
-
1. A method for detecting a persistent cross-site scripting vulnerability comprising:
-
inserting, via a processor, a client-side script as input into a web application; requesting, via the processor, data from the web application;
in response to requesting the data, detecting that resource is sent from a client device to an external computing device in response to execution of the client-side script on the client device, wherein the external computing device is a different device than the client device;receiving at the external computing device, the inserted client-side script in response to requesting data from the web application;
receiving from the external computing device, the inserted client-side script, in response to receiving the client-side script at the external computing device;detecting, via the processor, that the client-side script is subsequently returned unaltered via the data request by comparing the inserted client-side script with the received client side script, and that execution of the client-side script occurs. - View Dependent Claims (2, 3, 4, 5, 6)
-
Specification
-
- Resources
-
Current AssigneeHCL Technologies Limited
-
Original AssigneeInternational Business Machines Corporation
-
InventorsBronshtein, Emanuel, Hay, Roee, Kedmi, Sagi
-
Primary Examiner(s)Gergiso, Techane
-
Application NumberUS14/730,261Publication NumberTime in Patent Office1,048 DaysField of SearchUS Class CurrentCPC Class CodesH04L 63/1433 Vulnerability analysisH04L 63/1466 Active attacks involving in...
