What makes DOM-based XSS different from XSS/Reflected XSS?

It modifies the DOM environment

It executes only on the victims browser

What are the limitations with Filtering input/outputs for XSS?

Only works well with clear rules characterzing good/bad inputs

Not centrally forcable due to scattered code

Need constant updates on filters

Have to deal with unspecified browser behaviour

What are some ways to defend against XSS attacks through Improved Access Control

Server can sign scripts (PKI), client uses public key to verify

Only allow authorized scripts to be loaded for a given page (Content Security Policy)

Apply MAC to scripts, only server needs secret key

Create ACLs and Capabilities on the DOM rendered on the client side.

Blocking script execution and CSP is one of the solution against XSS attacks. Mozilla's Content Security Policies does this by:

All scripts for a page must be loaded from white-listed hosts

Scripts included via a <script> tag pointing to a white-listed host will be treated as valid

Do not load any pages where its script came from Black-listed hosts

Scripts with a <script> tag will be ignored

Which of the following is/are correct about Reflected XSS attacks

Malicious codes not stored in application

Harder to perform than Stored XSS

Targets all users using that website

a source DOM is a location (variable code) where the user input bring into the DOM (assign the variable to the data in the URL) www.vulnerable-website.example#<img src="test" onerror="alert('XSS')"> Which of the following JS code fits the description

var source = "Hello " + decodeURIComponent(location.hash.split("#")[1]);

for (let i = 1; i <= n; i++) { console.log(Inject Source); }

INSERT INTO user (srce,onerror) VALUES (‘test’,XSS)

a sink DOM is a location (variable code) where the user input executes in the DOM (Overwrites/add new malicious code into the webpage) www.vulnerable-website.example#<img src="test" onerror="alert('XSS')"> Which of the following JS code fits the description

var source = "Hello " + decodeURIComponent(location.hash.split("#")[1]);

for (let i = 1; i <= n; i++) { console.log(Inject Source); }

INSERT INTO user (srce,onerror) VALUES (‘test’,XSS)

Difference between Injection techniques; XSS and Buffer overflow?

XSS is a code injection technique, Buffer overflow is a command injection technique

XSS injects malicious codes in a form of script, buffer overflow injects it as a command

XSS makes use of weaknesses in DOM scripts, buffer overflow makes use of weaknesses in the memory of the system/application

XSS affects the client side of a web application, XSS affects the server side of an application

Week 12 - web security 2

Authored by Tze Tok

Arts

1st - 5th Grade

Used 5+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

20 questions

Show all answers

MULTIPLE SELECT QUESTION

2 mins • 1 pt

XSS can be prevented by

input validation and output encoding

Same Origin Policy

Cross Origin Policy

Content Security Policy

Data authentication of scripts

MULTIPLE SELECT QUESTION

2 mins • 1 pt

Where can SQL injection be performed

Web forms

Browser URL

PDF documents

Note pad

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

The image is an example of __________ against SQL injection

Filtering (Black listing)

Replacing dangerous characters with encoding

Parameterized queries

Reassigning variables

MULTIPLE SELECT QUESTION

2 mins • 1 pt

Which is true about XSS

The developers of the application are the ones at risk

Its main target is the application itself

It is a form of code injection

XSS attacks run a script in the browser that was not written by the web application owner

MULTIPLE SELECT QUESTION

2 mins • 1 pt

Which html tag(s) is used by the attacker to perform XSS

<div>

<exe>

<npm>

MULTIPLE SELECT QUESTION

2 mins • 1 pt

Which DOM code is executes the script tag?

document.querySelectorAll()

document.Inject()

document.queryAll()

document.querySelector()

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

Non-persistent XSS is known as

Stored XSS

Reflected XSS

DOM-Based XSS

Request-Based XSS

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

17 questions

Third Grade ART

Quiz

•

3rd - 5th Grade

18 questions

Goldilocks and the Three Bears (MALAYSIA)

Quiz

•

3rd - 6th Grade

15 questions

The Star-Spangled Banner: What Do You Know?

Quiz

•

3rd - 5th Grade

20 questions

Scott Joplin

Quiz

•

5th - 8th Grade

15 questions

Introduction to Malaysian Legal System

Quiz

•

1st - 5th Grade

15 questions

Review 5 -II

Quiz

•

5th Grade

20 questions

sing 2

Quiz

•

1st - 8th Grade

20 questions

Musik dan Tangga Nada

Quiz

•

3rd Grade

Popular Resources on Wayground

20 questions

STAAR Review Quiz #3

Quiz

•

8th Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

6 questions

Marshmallow Farm Quiz

Quiz

•

2nd - 5th Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

20 questions

Inferences

Quiz

•

4th Grade

19 questions

Classifying Quadrilaterals

Quiz

•

3rd Grade

12 questions

What makes Nebraska's government unique?

Quiz

•

4th - 5th Grade

Discover more resources for Arts

19 questions

Movies Disney

Quiz

•

5th Grade