Análisis y optimización del proceso de validación de ataques de secuencia de comandos en sitios cruzados (Xss) empleando burp suite para evadir medidas de seguridad

Toshiro Nagata Bolivar, Marjorye S.Alemán Delgado, Yury A.Toro Flores, Fancy U.Rivas Almonte

Resultado de la investigación: Contribución a una revistaArtículorevisión exhaustiva

Resumen

Currently Cross Site Scripting (XSS) attacks are one of the main threats to web applications. This XSS vulnerability is among the top 10 vulnerabilities in web applications according to OWASP top 10 as seen in https://wiki.owasp.org/ images/5/5e/OWASP-Top-10-2017-es.pdf. Although identifying a malicious script is an important part of defending a web application, current security measures are not sufficient. efficient. This article investigates the use of the Burp Suite tool for analysis and optimization of the different types of XSS attacks using Burp Suite, in the same way that this tool allows to speed up the search and exploitation process with greater efficiency compared to other available tools.

Título traducido de la contribuciónAnalysis and optimization of the cross-site scripting (Xss) attack validation process using burp suite to evade security measures
Idioma originalEspañol
Páginas (desde-hasta)414-432
Número de páginas19
PublicaciónRISTI - Revista Iberica de Sistemas e Tecnologias de Informacao
Volumen2021
N.ºE39
EstadoPublicada - ene. 2021

Nota bibliográfica

Publisher Copyright:
© 2021, Associacao Iberica de Sistemas e Tecnologias de Informacao. All rights reserved.

Palabras clave

  • Burp Suite
  • Cross-site scripting (XSS)
  • Security evasion

Citar esto