Automatic Detection of Second-Order XSS Vulnerabilities
- 作者: Christian Korscheck
- 收录:
- 简介:
Cross-Site Scripting (XSS) is a widespread security issue in many modern Web applications. One way to detect these vulnerabilities is to use fully automated tools such as Web Vulnerability Scanners.
Automatic Verification of String Manipulating Programs
- 作者: Fang Yu
- 收录:
- 简介:
#Overview * Motivation * Is it Vulnerable? #Symbolic String Verification * Verification Framework * Technical Details * Experiments # Composite Verification * String Analysis + Size Analys