Slashdot Mirror

← Back to Stories (view on slashdot.org)

How to Crack a Website - XSS, Cookies, Sessions

Posted by ryuzaki0 on from the waste-your-time dept.

twistedmoney45 writes "Informit.com provides an insiders look at a real life XSS attack and how it was used to bypass the authentication scheme of an online web application, leading to "shell" access, an admin account, and more. XSS attacks are often discussed in theory — this walk through illustrates just how dangerous these types of attacks can be in reality."

5 of 167 comments (clear)

  1. So... by cp.tar · · Score: 4, Funny

    ... can I crack pr0n sites with it?

    (This would have even been a frosty piss if it weren't for a Slow Down Cowboy!)

    --
    Ignore this signature. By order.
  2. Requires social engineering by cras · · Score: 4, Funny
    The most problematic part from the article:
    The end result was that I had to make a user click on a link that first took the victim to my server

    I think this is the reason why people aren't that concerned about XSS. This requires that the attacker knows someone who has access to the web site and a way to get him to click on the link. I would certainly never click on a suspicious looking link. But sure, not everyone does that and if there are other post-login holes to get yourself into an admin, that's a problem for you too.

    One thing that annoys me when discussing XSS problems and such is that people always just suggest to validate input. I've built perfectly secure PHP applications that don't validate input at all, they just don't print the output using "print" but another function that properly escapes the output. So much more easier that way than having to think about input validation for every single new field you add.

  3. Re:I knew, but... by flumps · · Score: 3, Funny

    .. Nobody can pwn me, I use IIS!!

    --
    "So there he is, risen from the dead. Like that fella, E. T." - Father Ted Crilly
  4. Re:Boring... by Anonymous Coward · · Score: 1, Funny

    Yup, Somebody Cracked Slashdot

    My favorite quote from said article:
    our db stores passwords in plaintext. Yes it's stupid, but I wrote this code 3 years ago and had no clue

  5. Meh. by goldenratiophi · · Score: 2, Funny

    I was just hoping for a text box and a button saying "Crack Website!"