WEB SPY DEFENSE SYSTEM
Sri Vasavi College, Erode Self-Finance Wing, 3rd February 2017. National Conference on Computer and Communication, NCCC’17. International Journal of Computer Science (IJCS) Published by SK Research Group of Companies (SKRGC)
Download this PDF format
Abstract
Click jacking aims in securing web based applications against click jacking attacks. Web applications have evolved from simple collections of static HTML documents to complex, fullfledged applications containing hundreds of dynamically generated pages. The combined use of client and server-side scripting allows developers to provide highly sophisticated user interfaces with the look-and-feel and functionalities that were previously only reserved to traditional desktop applications. This unit is responsible for detecting and logging any click jacking attacks that are contained in the web page under analysis. The detection is handled by two browser plug-ins. The first component is a solution that we developed to detect when multiple clickable elements co-exist and overlay in the region of the page where the user has clicked. We call our detection solution ClickIDS. The second plug-in is the modified version of the NoScript open-source tool that saves the generated alerts into a database instead of displaying popups to the user.
References
[1] Acutenix web security scanner. https://www.acunetix.com/.
[2] Alexa top sites. https://www.alexa.com/topsites.
[3] Malware domain blocklist. https://www.malwaredomains.com.
Keywords
ClickIDS,NoScript, Click jacking Attack, Stopper.