0
Successful attacks against web applications involve a number of steps. Before any
such attacks can begin, an attacker needs to enumerate the targeted application.
When targeting an Asynchronous JavaScript and XML (AJAX) application, an attacker
needs to enumerate the type of AJAX application and how the application interacts
with its users on the wire. Next, an attacker will determine what AJAX frameworks are in
use by the target and what methods the application exposes to its users. An attacker will
then analyze the application in depth for any methods that appear unintentionally exposed
or any parameters that a developer did not expect to be tampered with. Finally, an
attacker will analyze the cookies generated for predictability or insecure flags.
TYPES OF AJAX
Despite the overwhelming number of AJAX frameworks and toolkits, AJAX implementations
fall into two general categories: client-server proxy and client-side rendering. These
two types are often easily discernable by an attacker. Once identified, each will offer the
attacker two very different amounts of attack surfaces to begin analyzing.
Client-Server Proxy
Client-server proxy is sometimes also known as client/SOA.
Pages:
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281