Proceedings of 2013 3rd International Conference on Computer Science and Network Technology 2013
DOI: 10.1109/iccsnt.2013.6967063
|View full text |Cite
|
Sign up to set email alerts
|

Research on developing a lab environment for cross site request forgery: Attack and defense education in higher vocational colleges

Huangcun Zeng
1

Abstract: Cross Site Request Forgery (CSRF) is among the most exploited web security vulnerabilities. Yet it has received comparatively less attention. It's a must for web site administrators to protect their web sites from CSRF attacks. In order to let the students master the attack and defense skills of CSRF, it's essential to let them have the opportunity to truly practice the attacks as hackers do, and to practice the defenses as web site administrators do. Yet we haven't seen much research done in the area of devel… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
1

Citation Types

0
0
0

Year Published

2015
2015
2022
2022

Publication Types

Select...
2
2
1

Relationship

0
5

Authors

Journals

citations
Cited by 5 publications
(1 citation statement)
references
References 5 publications
(7 reference statements)
0
0
0
Order By: Relevance
“…Some researchers have analyzed so-called brute force attacks and methods of retrofitting against them (Cho et al, 2011;Cho et al, 2012;Rashwan et al, 2011;Laccetti & Schmid, 2007). Numerous studies have also focused on vulnerabilities that have given rise to DNS hijacking attacks (Brahmasani & Sivasankar, 2013;Shulman & Waidner, 2014), cross site request forgery (Siddiqui & Verma, 2011;Jovanovic, Kirda & Kruegel, 2006;Shahriar & Zulkernine, 2010;Zeng, 2013;Feil & Nyffenegger, 2008), misconfiguration (Saeed & Elgabar, 2014;Steinke, Tundreab & Kellya, 2011), content spoofing (Jitpukdebodin, Chokngamwong & Kungpisdan, 2014;Chavan & Meshram, 2013), local file inclusion (Ami & Malav, 2013), phishing attacks (Dadkhah, Lyashenko & Jazi, 2015;Nyeste & Mayhorn, 2012), and remote file inclusion (Robledo, 2008;Srivastava, 2012). However, there are no studies on the vulnerability of remote installation on what we will term remote installation vulnerability (RIV).…”
Section: Known Security Vulnerabilitiesmentioning
confidence: 99%

An Introduction to Remote Installation Vulnerability in Content Management Systems

Dadkhah1,
Shamshirband
2
2015
International Journal of Secure Software Engineering
1
0
0
0
View full textAdd to dashboardCite
show abstract
“…Some researchers have analyzed so-called brute force attacks and methods of retrofitting against them (Cho et al, 2011;Cho et al, 2012;Rashwan et al, 2011;Laccetti & Schmid, 2007). Numerous studies have also focused on vulnerabilities that have given rise to DNS hijacking attacks (Brahmasani & Sivasankar, 2013;Shulman & Waidner, 2014), cross site request forgery (Siddiqui & Verma, 2011;Jovanovic, Kirda & Kruegel, 2006;Shahriar & Zulkernine, 2010;Zeng, 2013;Feil & Nyffenegger, 2008), misconfiguration (Saeed & Elgabar, 2014;Steinke, Tundreab & Kellya, 2011), content spoofing (Jitpukdebodin, Chokngamwong & Kungpisdan, 2014;Chavan & Meshram, 2013), local file inclusion (Ami & Malav, 2013), phishing attacks (Dadkhah, Lyashenko & Jazi, 2015;Nyeste & Mayhorn, 2012), and remote file inclusion (Robledo, 2008;Srivastava, 2012). However, there are no studies on the vulnerability of remote installation on what we will term remote installation vulnerability (RIV).…”
Section: Known Security Vulnerabilitiesmentioning
confidence: 99%

An Introduction to Remote Installation Vulnerability in Content Management Systems

Dadkhah1,
Shamshirband
2
2015
International Journal of Secure Software Engineering
1
0
0
0
View full textAdd to dashboardCite
show abstract

Trusted Phishing: A Model to Teach Computer Security Through the Theft of Cookies

Rodriguez
1
,
Torres
2
,
Flores
3
et al. 2019
Advances in Intelligent Systems and Computing
0
0
0
0
View full textAdd to dashboardCite

Cyber-Attacks – Trends, Patterns and Security Countermeasures

Andreea1
2015
Procedia Economics and Finance
139
0
55
0
View full textAdd to dashboardCite
scite logo

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Product
Browser ExtensionAssistant by sciteCitation Statement SearchReference CheckVisualizationsDashboardsExplore JournalsExplore OrganizationsExplore FundersEmbedding BadgeEmbedding Citation SearchPricing
Resources
BlogHelp & FAQAccessibility StatementAPI TermsFor Universities & GovernmentsFor ResearchersFor PublishersFor Corporate, Pharma & EnterpriseAuthor MarketingBecome an AffiliateGet an organization trial or quotescite Data & Services
About
News & PressCareersRead our PaperCoverage

BlogTerms and ConditionsAPI TermsPrivacy PolicyContactCookie PreferencesDo Not Sell or Share My Personal Information

Copyright © 2024 scite LLC. All rights reserved.

Made with 💙 for researchers

Part of the Research Solutions Family.