You work as a Computer Hacking Forensic Investigator for SecureNet Inc. You want to investigate Cross-Site Scripting attack on your company’s Website. Which of the following methods of investigation can you use to accomplish the task?

Last Updated on March 19, 2022 by Admin 2

You work as a Computer Hacking Forensic Investigator for SecureNet Inc. You want to investigate Cross-Site Scripting attack on your company’s Website. Which of the following methods of investigation can you use to accomplish the task?

  • Review the source of any HTML-formatted e-mail messages for embedded scripts or links in the URL to the company’s site.
  • Look at the Web servers logs and normal traffic logging.
  • Use Wireshark to capture traffic going to the server and then searching for the requests going to the input page, which may give log of the malicious traffic and the IP address of the source.
  • Use a Web proxy to view the Web server transactions in real time and investigate any communication with outside servers.
Explanation:
You can use the following methods to investigate Cross-Site Scripting attack:
1. Look at the Web servers logs and normal traffic logging.
2. Use a Web proxy to view the Web server transactions in real time and investigate any communication with outside servers.
3. Review the source of any HTML-formatted e-mail messages for embedded scripts or links in the URL to the company’s site.
Answer: C is incorrect. This method is not used to investigate Cross-Site Scripting attack.
0 0 votes
Article Rating
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments