A dynamic detection method based on Web crawler and page code behavior for XSS vulnerability

Yi LIU; Junbin HONG

Dianxin kexue (Mar 2016)

A dynamic detection method based on Web crawler and page code behavior for XSS vulnerability

Yi LIU,
Junbin HONG

Affiliations

Yi LIU
Junbin HONG

Journal volume & issue: Vol. 32
pp. 87 – 91

Abstract

Read online

XSS vulnerability is a common vulnerability of attacking the Web application and getting the user’s privacy data.Traditional XSS vulnerability detection’s softwares aren’t specially detecting for AJAX Web application.There is a huge disparity in the inspection accuracy.According to this situation，the XSS vulnerability characteristics of AJAX Web applications were described in detail，and a dynamic detection method based on Web crawler and page code behavior was proposed.Experimental results show that the proposed method has good performance in labor-saving，time saving and vulnerability detection effect.

XSS vulnerabilitiy;web crawler;vulnerabilitiy detecting;AJAX Web application

Published in Dianxin kexue

ISSN: 1000-0801 (Print)
Publisher: Beijing Xintong Media Co., Ltd
Country of publisher: China
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering: Telecommunication
Website: http://www.infocomm-journal.com/dxkx/EN/1000-0801/home.shtml

About the journal

Abstract

Keywords