[F10_WebHack] Lab 2內容與繳交注意事項

 SQL injection、Cross-site scripting 等問題。本次 Lab 就是要大家嘗試使用 Paros 這款Web Proxy,這款特殊的 Web Proxy 架設在使用者的瀏覽器
和目標網站之間,所有的 HTTP 或是HTTPS 的請求與回應都會通過 Proxy ,所以可以仔細研究甚至修改這些資訊(包括 Cookies、Hidden Form 變數等請求

Lab2 要求:
1. 下載並安裝 Paros
2. 找一個網站做簡單的瀏覽測試,了解 Paros 的功能
3. 於宅學習 SLS 上寫下操作經驗與心得分享
4. 心得分享中請簡介何謂 SQL injection 與 Cross-site scripting

本 Lab 建議掃描自己過去開發過的網頁,如要掃描(甚至攻擊)他人網站請自行承擔法律問題

http://www.parosproxy.org/ (官方網站)


Very good written article. It will be supportive to anyone who utilizes it, including me. Keep doing what you are doing – can’r wait to read more posts. Canada Visa Weather

Nice post. I was checking constantly this blog and I’m impressed! Extremely useful info specially the last part I care for such information a lot. I was seeking this certain info for a long time. Thank you and good luck. rapid frontend

Succeed! It could be one of the most useful blogs we have ever come across on the subject. Excellent info! I’m also an expert in this topic so I can understand your effort very well. Thanks for the huge help. gmail login