Sign in

Review Note

Last Update: 04/27/2023 06:18 AM

Current Deck: Software Security

New Card (Unpublished)

Currently Published Content

Front
Back

No published tags.

Pending Suggestions

Field Change Suggestions:
What are some XSS attacks that can be carried out? (not the classes of XSS, eg reflected, but more of specific attacks possible)
Cookie theft
steal the victim’s cookies associated with the website using document.cookie
use them to extract sensitive data like session IDs
Keylogging
register a keyboard event listener using addEventListener and send all the victim’s keystrokes to the attacker’s server
Phishing
insert a fake login form, set the form’s action attribute to the attacker’s server and get user credential submitted
Deface website
modify/replace the webpage’s contents with fake contents
Network Exploration
port scanning, network mapping
CSRF, Man-in-the-browser

Terms of Service | Privacy Policy | Imprint (German)

Copyright © AnkiCollab. Website Template Designed & Developed by Quixlab 2018