Subject Computer Science Computer Science - Other


Secure Coding (CSCI 560) XSS
One of the best ways to learn something is to research it as if you had to teach it to someone else. Google has developed a game which we will be exploring for the next assignment to learn about cross-site scripting (also known as XSS) vulnerabilities and exploits. Your job will be to go through all six exercises, finding a way to pass each one. As many of you do not have HTML and/or JavaScript experience, I don't expect the answers to necessarily come out of thin air. Luckily, there are answers posted online in a number of places feel free to use them to help you if you get stuck. However, rather than just taking the answers at face value, take special time and care to research and understand each exploit and how/why it works.
The specific requirements of this project will be as follows:
Go through all six exercises on Xss Game website, writing down (in your own words) the steps required to pass each exercise. Be sure to explicitly and thoroughly address how/why your solution works, and cite any references used. Use annotated screenshots to help explain_you solution.
Research one notable/famous XSS attack that has been carried out. Create a short (half to full page) synopsis of the attack (Who was responsible? How was it carried out? Who was affected? How severe was it? What was the outcome? Any other interesting facts about it? Etc.). Make sure to cite all sources.

Solution Preview

This material may consist of step-by-step explanations on how to solve a problem or examples of proper writing, including the use of citations, references, bibliographies, and formatting. This material is made available for the sole purpose of studying and learning - misuse is strictly forbidden.

It was done by XSS (cross-site scripting) type of attack. In these types of attack, attackers usually try to put a specific string to the link parameters of the web page, or as an input to the certain fields in the page [2-4]. This string is some sort of the Javascript code which is then executed...

This is only a preview of the solution. Please use the purchase button to see the entire solution

Assisting Tutor
Get College Homework Help.

Are you sure you don't want to upload any files?

Fast tutor response requires as much info as possible.

Upload a file
Continue without uploading

We couldn't find that subject.
Please select the best match from the list below.

We'll send you an email right away. If it's not in your inbox, check your spam folder.

  • 1
  • 2
  • 3
Live Chats