Anúncio

Top 10 Web Security Vulnerabilities

Carol McDonald
Solutions Architect, Software developer, Instructor, Technology Evangelist em MapR Technologies
15 de Oct de 2009
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities
Top 10 Web Security Vulnerabilities

Check these out next

Owasp top 10 web application security hazards part 2
Owasp top 10 web application security hazards part 2
Abhinav Sejpal
Common Web Application Attacks
Common Web Application Attacks
Ahmed Sherif
Secure code practices
Secure code practices
Hina Rawal
Introduction to Web Application Penetration Testing
Introduction to Web Application Penetration Testing
Anurag Srivastava
Top 10 Web Application vulnerabilities
Top 10 Web Application vulnerabilities
Terrance Medina
Intro to Web Application Security
Intro to Web Application Security
Rob Ragan
Beyond OWASP Top 10 - Hack In Paris 2017
Beyond OWASP Top 10 - Hack In Paris 2017
Aaron Hnatiw
Hacking the Web
Hacking the Web
Mike Crabb
1 de 74

Top 10 Web Security Vulnerabilities

15 de Oct de 2009
Baixar para ler offline

Top 10 Web Security Vulnerabilities as defined by the OWASP, and what you can do to protect your application

Carol McDonald
Solutions Architect, Software developer, Instructor, Technology Evangelist em MapR Technologies
Anúncio
Anúncio
Anúncio

Recomendados

OWASP top 10-2013OWASP top 10-2013
OWASP top 10-2013tmd80012.6K visualizações41 slides
Owasp Top 10 And Security Flaw Root CausesOwasp Top 10 And Security Flaw Root Causes
Owasp Top 10 And Security Flaw Root CausesMarco Morana5.5K visualizações60 slides
2013 OWASP Top 102013 OWASP Top 10
2013 OWASP Top 10bilcorry14.2K visualizações49 slides
Top 10 Web Security Vulnerabilities (OWASP Top 10)Top 10 Web Security Vulnerabilities (OWASP Top 10)
Top 10 Web Security Vulnerabilities (OWASP Top 10)Brian Huff23K visualizações27 slides
OWASP Top 10 Proactive ControlsOWASP Top 10 Proactive Controls
OWASP Top 10 Proactive ControlsKaty Anton1.6K visualizações55 slides
RSA Europe 2013 OWASP TrainingRSA Europe 2013 OWASP Training
RSA Europe 2013 OWASP TrainingJim Manico16.3K visualizações150 slides

Mais conteúdo relacionado

Apresentações para você(20)

Owasp top 10 web application security hazards part 2Owasp top 10 web application security hazards part 2
Owasp top 10 web application security hazards part 2
Abhinav Sejpal871 visualizações
Common Web Application Attacks Common Web Application Attacks
Common Web Application Attacks
Ahmed Sherif788 visualizações
Secure code practicesSecure code practices
Secure code practices
Hina Rawal225 visualizações
Introduction to Web Application Penetration TestingIntroduction to Web Application Penetration Testing
Introduction to Web Application Penetration Testing
Anurag Srivastava2K visualizações
Top 10 Web Application vulnerabilitiesTop 10 Web Application vulnerabilities
Top 10 Web Application vulnerabilities
Terrance Medina546 visualizações
Intro to Web Application SecurityIntro to Web Application Security
Intro to Web Application Security
Rob Ragan6.6K visualizações
Beyond OWASP Top 10 - Hack In Paris 2017Beyond OWASP Top 10 - Hack In Paris 2017
Beyond OWASP Top 10 - Hack In Paris 2017
Aaron Hnatiw913 visualizações
Hacking the WebHacking the Web
Hacking the Web
Mike Crabb39K visualizações
Pentesting RESTful webservicesPentesting RESTful webservices
Pentesting RESTful webservices
Mohammed A. Imran20.2K visualizações
Application Security Part 1 Threat Defense In Client Server Applications ...Application Security Part 1 Threat Defense In Client Server Applications ...
Application Security Part 1 Threat Defense In Client Server Applications ...
Greg Sohl5.1K visualizações
A2 - broken authentication and session management(OWASP thailand chapter Apri...A2 - broken authentication and session management(OWASP thailand chapter Apri...
A2 - broken authentication and session management(OWASP thailand chapter Apri...
Noppadol Songsakaew4.1K visualizações
Methods to Bypass a Web Application Firewall EngMethods to Bypass a Web Application Firewall Eng
Methods to Bypass a Web Application Firewall Eng
Dmitry Evteev12.3K visualizações
Web Application Firewall: Suckseed or SucceedWeb Application Firewall: Suckseed or Succeed
Web Application Firewall: Suckseed or Succeed
Prathan Phongthiproek8.9K visualizações
S8-Session ManagmentS8-Session Managment
S8-Session Managment
zakieh alizadeh151 visualizações
Avoiding Cross Site Scripting - Not as easy as you might thinkAvoiding Cross Site Scripting - Not as easy as you might think
Avoiding Cross Site Scripting - Not as easy as you might think
Erlend Oftedal10.2K visualizações
Become a Security NinjaBecome a Security Ninja
Become a Security Ninja
Paul Gilzow740 visualizações
Cyber pptCyber ppt
Cyber ppt
karthik menon1.8K visualizações
Sql injection bypassing hand book blackroseSql injection bypassing hand book blackrose
Sql injection bypassing hand book blackrose
Noaman Aziz2.1K visualizações
OWASP Top 10 - Day 1 - A1 injection attacksOWASP Top 10 - Day 1 - A1 injection attacks
OWASP Top 10 - Day 1 - A1 injection attacks
Mohamed Talaat593 visualizações
Session3 data-validation-sql injectionSession3 data-validation-sql injection
Session3 data-validation-sql injection
zakieh alizadeh223 visualizações

Destaque(20)

OWASP Top 10 Web Application VulnerabilitiesOWASP Top 10 Web Application Vulnerabilities
OWASP Top 10 Web Application Vulnerabilities
Software Guru18.6K visualizações
Web SecurityWeb Security
Web Security
Tripad M4.8K visualizações
Introduction to Web securityIntroduction to Web security
Introduction to Web security
jeyaselvir351 visualizações
OWASP Top 10 A4 – Insecure Direct Object ReferenceOWASP Top 10 A4 – Insecure Direct Object Reference
OWASP Top 10 A4 – Insecure Direct Object Reference
Narudom Roongsiriwong, CISSP3.7K visualizações
Web Security 101Web Security 101
Web Security 101
Michael Peters4.5K visualizações
Web SecurityWeb Security
Web Security
ADIEFEH4.2K visualizações
Web Security - Introduction v.1.3Web Security - Introduction v.1.3
Web Security - Introduction v.1.3
Oles Seheda78.6K visualizações
Top 10 Web App Security RisksTop 10 Web App Security Risks
Top 10 Web App Security Risks
Sperasoft17.8K visualizações
[Wroclaw #5] OWASP Projects: beyond Top 10[Wroclaw #5] OWASP Projects: beyond Top 10
[Wroclaw #5] OWASP Projects: beyond Top 10
OWASP1.7K visualizações
Browser Security 101 Browser Security 101
Browser Security 101
Stormpath2.1K visualizações
Web security 2012Web security 2012
Web security 2012
Mohamed Elabnody5.5K visualizações
Browser SecurityBrowser Security
Browser Security
Roberto Suggi Liverani15.9K visualizações
Web SecurityWeb Security
Web Security
Bharath Manoharan78.7K visualizações
Web Security Workshop : A JumpstartWeb Security Workshop : A Jumpstart
Web Security Workshop : A Jumpstart
Satria Ady Pradana1.1K visualizações
情報検索における質問者の プライバシー保護 :Private Information Retrieval情報検索における質問者の プライバシー保護 :Private Information Retrieval
情報検索における質問者の プライバシー保護 :Private Information Retrieval
Hiroshi Nakagawa3.1K visualizações
WordPress for Beginners Create Professional WebsitesWordPress for Beginners Create Professional Websites
WordPress for Beginners Create Professional Websites
ayman diab345 visualizações
Mobile Threats and Owasp Top 10 RisksMobile Threats and Owasp Top 10 Risks
Mobile Threats and Owasp Top 10 Risks
Santosh Satam5.2K visualizações
Sergey Kochergan - OWASP Top 10 Web Application Vulnerabilities Sergey Kochergan - OWASP Top 10 Web Application Vulnerabilities
Sergey Kochergan - OWASP Top 10 Web Application Vulnerabilities
Braindev Kyiv377 visualizações
ONE Conference: Vulnerabilities in Web ApplicationsONE Conference: Vulnerabilities in Web Applications
ONE Conference: Vulnerabilities in Web Applications
Netcetera691 visualizações
Nullcon Jailbreak CTF 2012,Walkthrough by Team LoosersNullcon Jailbreak CTF 2012,Walkthrough by Team Loosers
Nullcon Jailbreak CTF 2012,Walkthrough by Team Loosers
Ajith Chandran2.7K visualizações
Anúncio

Similar a Top 10 Web Security Vulnerabilities(20)

PHPUG PresentationPHPUG Presentation
PHPUG Presentation
Damon Cortesi815 visualizações
Securing Java EE Web AppsSecuring Java EE Web Apps
Securing Java EE Web Apps
Frank Kim4.8K visualizações
General Principles of Web SecurityGeneral Principles of Web Security
General Principles of Web Security
jemond2.7K visualizações
Joomla security nuggetsJoomla security nuggets
Joomla security nuggets
guestbd1cdca3.6K visualizações
PHP Secure ProgrammingPHP Secure Programming
PHP Secure Programming
Balavignesh Kasinathan2.5K visualizações
PCI Security Requirements - secure codingPCI Security Requirements - secure coding
PCI Security Requirements - secure coding
Haitham Raik1.3K visualizações
Web SecurityWeb Security
Web Security
Supankar Banik708 visualizações
Pascarello_Investigating JavaScript and Ajax SecurityPascarello_Investigating JavaScript and Ajax Security
Pascarello_Investigating JavaScript and Ajax Security
amiable_indian3K visualizações
04. xss and encoding04. xss and encoding
04. xss and encoding
Eoin Keary1.9K visualizações
CiklumJavaSat_15112011:Alex Kruk VMForceCiklumJavaSat_15112011:Alex Kruk VMForce
CiklumJavaSat_15112011:Alex Kruk VMForce
Ciklum Ukraine612 visualizações
Application SecurityApplication Security
Application Security
nirola5.2K visualizações
Jim Manico: Developer Top 10 Core Controls, web application security @ OWASP ...Jim Manico: Developer Top 10 Core Controls, web application security @ OWASP ...
Jim Manico: Developer Top 10 Core Controls, web application security @ OWASP ...
Xlator1.5K visualizações
my accadanic project pptmy accadanic project ppt
my accadanic project ppt
Manivel Thiruvengadam38 visualizações
Secure coding in C#Secure coding in C#
Secure coding in C#
Siddharth Bezalwar7K visualizações
Client-side JavaScript VulnerabilitiesClient-side JavaScript Vulnerabilities
Client-side JavaScript Vulnerabilities
Ory Segal28K visualizações
09 - express nodes on the right angle - vitaliy basyuk - it event 2013 (5)09 - express nodes on the right angle - vitaliy basyuk - it event 2013 (5)
09 - express nodes on the right angle - vitaliy basyuk - it event 2013 (5)
Igor Bronovskyy408 visualizações
Php & Web Security - PHPXperts 2009Php & Web Security - PHPXperts 2009
Php & Web Security - PHPXperts 2009
mirahman5.2K visualizações
phpphp
php
bhuvana553435 visualizações
XSS Primer - Noob to Pro in 1 hourXSS Primer - Noob to Pro in 1 hour
XSS Primer - Noob to Pro in 1 hour
snoopythesecuritydog1.6K visualizações
D:\Technical\Ppt\Sql InjectionD:\Technical\Ppt\Sql Injection
D:\Technical\Ppt\Sql Injection
avishkarm6K visualizações

Mais de Carol McDonald(20)

Introduction to machine learning with GPUsIntroduction to machine learning with GPUs
Introduction to machine learning with GPUs
Carol McDonald421 visualizações
Streaming healthcare Data pipeline using Apache APIs: Kafka and Spark with Ma...Streaming healthcare Data pipeline using Apache APIs: Kafka and Spark with Ma...
Streaming healthcare Data pipeline using Apache APIs: Kafka and Spark with Ma...
Carol McDonald1.6K visualizações
Analyzing Flight Delays with Apache Spark, DataFrames, GraphFrames, and MapR-DBAnalyzing Flight Delays with Apache Spark, DataFrames, GraphFrames, and MapR-DB
Analyzing Flight Delays with Apache Spark, DataFrames, GraphFrames, and MapR-DB
Carol McDonald953 visualizações
Analysis of Popular Uber Locations using Apache APIs: Spark Machine Learning...Analysis of Popular Uber Locations using Apache APIs: Spark Machine Learning...
Analysis of Popular Uber Locations using Apache APIs: Spark Machine Learning...
Carol McDonald884 visualizações
Predicting Flight Delays with Spark Machine LearningPredicting Flight Delays with Spark Machine Learning
Predicting Flight Delays with Spark Machine Learning
Carol McDonald2.3K visualizações
Structured Streaming Data Pipeline Using Kafka, Spark, and MapR-DBStructured Streaming Data Pipeline Using Kafka, Spark, and MapR-DB
Structured Streaming Data Pipeline Using Kafka, Spark, and MapR-DB
Carol McDonald1.2K visualizações
Streaming Machine learning Distributed Pipeline for Real-Time Uber Data Using...Streaming Machine learning Distributed Pipeline for Real-Time Uber Data Using...
Streaming Machine learning Distributed Pipeline for Real-Time Uber Data Using...
Carol McDonald2K visualizações
Applying Machine Learning to IOT: End to End Distributed Pipeline for Real-Ti...Applying Machine Learning to IOT: End to End Distributed Pipeline for Real-Ti...
Applying Machine Learning to IOT: End to End Distributed Pipeline for Real-Ti...
Carol McDonald1.1K visualizações
Applying Machine Learning to IOT: End to End Distributed Pipeline for Real- T...Applying Machine Learning to IOT: End to End Distributed Pipeline for Real- T...
Applying Machine Learning to IOT: End to End Distributed Pipeline for Real- T...
Carol McDonald2.8K visualizações
How Big Data is Reducing Costs and Improving Outcomes in Health CareHow Big Data is Reducing Costs and Improving Outcomes in Health Care
How Big Data is Reducing Costs and Improving Outcomes in Health Care
Carol McDonald1K visualizações
Demystifying AI, Machine Learning and Deep LearningDemystifying AI, Machine Learning and Deep Learning
Demystifying AI, Machine Learning and Deep Learning
Carol McDonald872 visualizações
Spark graphxSpark graphx
Spark graphx
Carol McDonald1.5K visualizações
Applying Machine learning to IOT: End to End Distributed Distributed Pipeline...Applying Machine learning to IOT: End to End Distributed Distributed Pipeline...
Applying Machine learning to IOT: End to End Distributed Distributed Pipeline...
Carol McDonald993 visualizações
Streaming patterns revolutionary architectures Streaming patterns revolutionary architectures
Streaming patterns revolutionary architectures
Carol McDonald506 visualizações
Spark machine learning predicting customer churnSpark machine learning predicting customer churn
Spark machine learning predicting customer churn
Carol McDonald1.3K visualizações
Fast Cars, Big Data How Streaming can help Formula 1Fast Cars, Big Data How Streaming can help Formula 1
Fast Cars, Big Data How Streaming can help Formula 1
Carol McDonald907 visualizações
Applying Machine Learning to Live Patient DataApplying Machine Learning to Live Patient Data
Applying Machine Learning to Live Patient Data
Carol McDonald1.8K visualizações
Streaming Patterns Revolutionary Architectures with the Kafka APIStreaming Patterns Revolutionary Architectures with the Kafka API
Streaming Patterns Revolutionary Architectures with the Kafka API
Carol McDonald1K visualizações
Apache Spark Machine Learning Decision TreesApache Spark Machine Learning Decision Trees
Apache Spark Machine Learning Decision Trees
Carol McDonald3.1K visualizações
Advanced Threat Detection on Streaming DataAdvanced Threat Detection on Streaming Data
Advanced Threat Detection on Streaming Data
Carol McDonald837 visualizações
Anúncio

Top 10 Web Security Vulnerabilities

  1. OWASP Top 10 Web Security Vulnerabilities Carol McDonald Sun Microsystems
  4. WebGoat and WebScarab from OWASP
  5. Enterprise Security API http://www.owasp.org/index.php/Category:OWASP_Enterprise_Security_API
  7. Enterprise Security API
  8. Enterprise Security API
  15. Validation, Encoding, and Injection http://owasp-esapi-java.googlecode.com/files/OWASP%20ESAPI.ppt Any Encoding Any Interpreter Set Character Set Encode For HTML Global Validate Canonicalize Specific Validate Sanitize Canonicalize Validate
  16. Handling Validation, and Encoding http://owasp-esapi-java.googlecode.com/files/OWASP%20ESAPI.ppt encodeForURL encodeForJavaScript encodeForVBScript encodeForDN encodeForHTML encodeForHTMLAttribute encodeForLDAP encodeForSQL encodeForXML encodeForXMLAttribute encodeForXPath isValidDirectoryPath isValidCreditCard isValidDataFromBrowser isValidListItem isValidFileContent isValidFileName isValidHTTPRequest isValidRedirectLocation isValidSafeHTML isValidPrintable safeReadLine Canonicalization Double Encoding Protection Normalization Sanitization
  30. Handling Validation, and Encoding http://owasp-esapi-java.googlecode.com/files/OWASP%20ESAPI.ppt encodeForURL encodeForJavaScript encodeForVBScript encodeForDN encodeForHTML encodeForHTMLAttribute encodeForLDAP encodeForSQL encodeForXML encodeForXMLAttribute encodeForXPath isValidDirectoryPath isValidCreditCard isValidDataFromBrowser isValidListItem isValidFileContent isValidFileName isValidHTTPRequest isValidRedirectLocation isValidSafeHTML isValidPrintable safeReadLine Canonicalization Double Encoding Protection Normalization Sanitization
  33. Real Attack on Australian Tax office attacker changed the tax id in the url , got info on 17,000 companies
  37. Handling Direct Object References http://app?file=7d3J93 Report123.xls Web Service Database Mainframe File System User Etc… Access Reference Map Indirect Reference Direct Reference Indirect Reference Direct Reference
  47. Handling Authentication and Identity http://owasp-esapi-java.googlecode.com/files/OWASP%20ESAPI.ppt Strong Passwords Random Tokens CSRF Tokens Lockout Remember Me Screen Name Roles Timeout Users
  55. ESAPI Handling Authentication and Identity http://owasp-esapi-java.googlecode.com/files/OWASP%20ESAPI.ppt Strong Passwords Random Tokens CSRF Tokens Lockout Remember Me Screen Name Roles Timeout Users
  60. Handling Sensitive Information http://owasp-esapi-java.googlecode.com/files/OWASP%20ESAPI.ppt Encryption Digital Signatures Integrity Seals Strong GUID Random Tokens Timestamp Salted Hash Safe Config Details
  69. ACEGI Spring Security
  70. ESAPI Handling Access Control isAuthorizedForURL isAuthorizedForFunction isAuthorizedForFunction isAuthorizedForService isAuthorizedForData isAuthorizedForFile

Notas do Editor

  1. The attacker can send data in any encoding. And the interpreters downstream from your application may decide to handle any encoding. Canonicalize Input could be in any character set Double-encoding Multiple encoding schemes Double-encoding with multiple encoding schemes Validation Simple to configure for positive rules Impossible to do perfectly, since you need special characters GetSafeValue Rich content – strip out bad stuff and continue Difficult – need to fully parse HTML Canonicalize and Validate from database Watch out mass SQL injection? EncodeForHTML Not perfect since browsers allow encoded characters to execute (particularly in attributes) Have to avoid double-encoding SetCharacterSet Browser will try to guess the encoding
  2. The attacker can send data in any encoding. And the interpreters downstream from your application may decide to handle any encoding. Canonicalize Input could be in any character set Double-encoding Multiple encoding schemes Double-encoding with multiple encoding schemes Validation Simple to configure for positive rules Impossible to do perfectly, since you need special characters GetSafeValue Rich content – strip out bad stuff and continue Difficult – need to fully parse HTML Canonicalize and Validate from database Watch out mass SQL injection? EncodeForHTML Not perfect since browsers allow encoded characters to execute (particularly in attributes) SetCharacterSet Browser will try to guess the encoding
  3. The attacker can send data in any encoding. And the interpreters downstream from your application may decide to handle any encoding. Canonicalize Input could be in any character set Double-encoding Multiple encoding schemes Double-encoding with multiple encoding schemes Validation Simple to configure for positive rules Impossible to do perfectly, since you need special characters GetSafeValue Rich content – strip out bad stuff and continue Difficult – need to fully parse HTML Canonicalize and Validate from database Watch out mass SQL injection? EncodeForHTML Not perfect since browsers allow encoded characters to execute (particularly in attributes) SetCharacterSet Browser will try to guess the encoding
  4. If an online bank allowed its application to process requests, such as transfer funds, a similar attack might allow high risk transactions such as money transfers The form itself contains the fields name and lastname and the button submit to prevent this to be forgged we add another field which contains the name of the current session identifier cookie name and the current session identifier cookie value <form> <input type="test" name="name" value="John"/> <input type="test" name="lastname" value="Dawson"/> <input type="test" name="JSPSESSIONID" value="7af7a55caff365ca594510586"/> <input type="submit"/> </form>
  5. If an online bank allowed its application to process requests, such as transfer funds, a similar attack might allow high risk transactions such as money transfers The form itself contains the fields name and lastname and the button submit to prevent this to be forgged we add another field which contains the name of the current session identifier cookie name and the current session identifier cookie value <form> <input type="test" name="name" value="John"/> <input type="test" name="lastname" value="Dawson"/> <input type="test" name="JSPSESSIONID" value="7af7a55caff365ca594510586"/> <input type="submit"/> </form>
  6. If an online bank allowed its application to process requests, such as transfer funds, a similar attack might allow high risk transactions such as money transfers The form itself contains the fields name and lastname and the button submit to prevent this to be forgged we add another field which contains the name of the current session identifier cookie name and the current session identifier cookie value <form> <input type="test" name="name" value="John"/> <input type="test" name="lastname" value="Dawson"/> <input type="test" name="JSPSESSIONID" value="7af7a55caff365ca594510586"/> <input type="submit"/> </form>
  7. The attacker can send data in any encoding. And the interpreters downstream from your application may decide to handle any encoding. Canonicalize Input could be in any character set Double-encoding Multiple encoding schemes Double-encoding with multiple encoding schemes Validation Simple to configure for positive rules Impossible to do perfectly, since you need special characters GetSafeValue Rich content – strip out bad stuff and continue Difficult – need to fully parse HTML Canonicalize and Validate from database Watch out mass SQL injection? EncodeForHTML Not perfect since browsers allow encoded characters to execute (particularly in attributes) SetCharacterSet Browser will try to guess the encoding
  8. If an online bank allowed its application to process requests, such as transfer funds, a similar attack might allow high risk transactions such as money transfers The form itself contains the fields name and lastname and the button submit to prevent this to be forgged we add another field which contains the name of the current session identifier cookie name and the current session identifier cookie value <form> <input type="test" name="name" value="John"/> <input type="test" name="lastname" value="Dawson"/> <input type="test" name="JSPSESSIONID" value="7af7a55caff365ca594510586"/> <input type="submit"/> </form>
  9. If an online bank allowed its application to process requests, such as transfer funds, a similar attack might allow high risk transactions such as money transfers The form itself contains the fields name and lastname and the button submit to prevent this to be forgged we add another field which contains the name of the current session identifier cookie name and the current session identifier cookie value <form> <input type="test" name="name" value="John"/> <input type="test" name="lastname" value="Dawson"/> <input type="test" name="JSPSESSIONID" value="7af7a55caff365ca594510586"/> <input type="submit"/> </form>
Anúncio