脚本攻击的检测和防范技术综述：差距、挑战和建议

Q3 Engineering Recent Patents on Engineering Pub Date : 2024-02-21 DOI:10.2174/0118722121293163240212030405

Seema Sharma, Narendra Singh Yadav

{"title":"脚本攻击的检测和防范技术综述：差距、挑战和建议","authors":"Seema Sharma, Narendra Singh Yadav","doi":"10.2174/0118722121293163240212030405","DOIUrl":null,"url":null,"abstract":"\n\nWeb apps hold important information, such as login tokens and individual data, and cybercriminals\nrepeatedly target attackers. Cross-site scripting is one of the most frequent vulnerabilities\nin web apps. Several techniques and patents are used to mitigate these vulnerabilities. Several\n100 articles from a review of research papers published between 2005 and 2023 were considered.\nThis paper reviewed different techniques and tools to detect cross-site scripting attacks, and it will be\nhelpful to understand, analyze, and develop a strategy to deal with them. This paper focuses on different\nmethods and tools for identifying cross-site scripting (XSS) attacks. Also, it depicts the\nstrengths and shortcomings of the existing proposed method. Additionally, it will help to understand\nexisting open issues or challenges faced by previous researchers.\n","PeriodicalId":40022,"journal":{"name":"Recent Patents on Engineering","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2024-02-21","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Review on Detection and Prevention Techniques of Scripting Attacks:\\nGaps, Challenges and Suggestions\",\"authors\":\"Seema Sharma, Narendra Singh Yadav\",\"doi\":\"10.2174/0118722121293163240212030405\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"\\n\\nWeb apps hold important information, such as login tokens and individual data, and cybercriminals\\nrepeatedly target attackers. Cross-site scripting is one of the most frequent vulnerabilities\\nin web apps. Several techniques and patents are used to mitigate these vulnerabilities. Several\\n100 articles from a review of research papers published between 2005 and 2023 were considered.\\nThis paper reviewed different techniques and tools to detect cross-site scripting attacks, and it will be\\nhelpful to understand, analyze, and develop a strategy to deal with them. This paper focuses on different\\nmethods and tools for identifying cross-site scripting (XSS) attacks. Also, it depicts the\\nstrengths and shortcomings of the existing proposed method. Additionally, it will help to understand\\nexisting open issues or challenges faced by previous researchers.\\n\",\"PeriodicalId\":40022,\"journal\":{\"name\":\"Recent Patents on Engineering\",\"volume\":null,\"pages\":null},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2024-02-21\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Recent Patents on Engineering\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.2174/0118722121293163240212030405\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q3\",\"JCRName\":\"Engineering\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Recent Patents on Engineering","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.2174/0118722121293163240212030405","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q3","JCRName":"Engineering","Score":null,"Total":0}

引用次数: 0

摘要

网络应用程序中保存着登录令牌和个人数据等重要信息，网络犯罪分子一再将攻击目标锁定为网络应用程序。跨站脚本是网络应用程序中最常见的漏洞之一。有几项技术和专利被用来缓解这些漏洞。本文回顾了检测跨站脚本攻击的不同技术和工具，有助于理解、分析和制定应对策略。本文重点介绍了识别跨站脚本 (XSS) 攻击的不同方法和工具。同时，本文还描述了现有建议方法的优势和不足。此外，本文还将有助于了解现有的公开问题或前人面临的挑战。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

Review on Detection and Prevention Techniques of Scripting Attacks: Gaps, Challenges and Suggestions

Web apps hold important information, such as login tokens and individual data, and cybercriminals repeatedly target attackers. Cross-site scripting is one of the most frequent vulnerabilities in web apps. Several techniques and patents are used to mitigate these vulnerabilities. Several 100 articles from a review of research papers published between 2005 and 2023 were considered. This paper reviewed different techniques and tools to detect cross-site scripting attacks, and it will be helpful to understand, analyze, and develop a strategy to deal with them. This paper focuses on different methods and tools for identifying cross-site scripting (XSS) attacks. Also, it depicts the strengths and shortcomings of the existing proposed method. Additionally, it will help to understand existing open issues or challenges faced by previous researchers.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Recent Patents on Engineering Engineering-Engineering (all)

CiteScore

1.40

自引率

0.00%

发文量

100

期刊介绍： Recent Patents on Engineering publishes review articles by experts on recent patents in the major fields of engineering. A selection of important and recent patents on engineering is also included in the journal. The journal is essential reading for all researchers involved in engineering sciences.