-
公开(公告)号:US11005877B2
公开(公告)日:2021-05-11
申请号:US16353795
申请日:2019-03-14
发明人: Emanuel Bronshtein , Roee Hay , Sagi Kedmi
IPC分类号: H04L29/06
摘要: Various techniques for detecting a persistent cross-site scripting vulnerability are described herein. In one example, a method includes detecting, via the processor, a read operation executed on a resource using an instrumentation mechanism and returning, via the processor, a malicious script in response to the read operation. The method also includes detecting, via the processor, a write operation executed on the resource using the instrumentation mechanism and detecting, via the processor, a script operation executed by the malicious script that results in resource data being sent to an external computing device from a client device. Furthermore, the method includes receiving, via the processor, metadata indicating the execution of the read operation, the write operation, and the script operation.
搜索结果
1 条记录 (耗时 0.01 秒)
筛选
AND
AND
过滤
NOT
NOT
扫码加群
