Limited-time offer! Save up to 50% Off | Solutions starting at $6 each  

CS 6035: Introduction to Information Security

Added on - 22 Nov 2021

Trusted by +2 million users,
1000+ happy students everyday
Showing pages 1 to 4 of 16 pages
869834-website security


Table of Contents
1Introduction.................................................................................................................................2
2Oracle virtual machine installation............................................................................................2
3Target 1.XSRF.............................................................................................................................3
4Target 2-XSS Username and Password Theft...........................................................................8
5Target 3 SQL injection..............................................................................................................12
6Conclusion..................................................................................................................................14
References..........................................................................................................................................15
1Introduction
Web security is very essential factor, for every individual or an organization.
Especially, for the banks. Because, the lack of web security allows various vulnerabilities and
threats for the respective system from the attackers, which could be dangerous. For instance,
leakage of sensitive data. Thus, it is essential to secure the computer, internet connection and
web browser. The encryption method can be used to safeguard the sensitive information. The
accounting information system can be used for the collecting of data processing and they are
stored in the data that are used by the decision makers. An accounting information system is
generally used for computer based method for the hacking account activity of the information
technology.
The main objective of this project is to develop the web security on banking and
account information payroll system using virtual machine. The login to the virtual machine to
enter the root name and password information. The software can install it and put and enter
the command on startx, after loading on the payroll webpage and can processing of the each
steps1. They can use for the three targets likewise, XSRF, XSS Username and password
Theft, SQL injection, which will be investigated.
2Oracle virtual machine installation
1Stuart McClure, Joel Scambray and George Kurtz,Hacking Exposed(McGraw-Hill/Osborne, 2012).
3Target 1.XSRF
The cross-site request forgery (XSRF or CSRF) refers to a method used to attack the
website, where the intruder impersonates as one of the legitimate and a trusted user. The
XSRF used for the malicious exploit of a website unauthorized commands are transmitted
from a user they can access of the web application they can specified the target state changing
request and to identify vulnerability. The Georgia tech payroll system the user can enter the
user name and password to login on the site, if the user can already login on the system of
Georgia payroll web pages the Alice once visit the webpage and find the redirection of
Georgia payroll system with the account number and routing number is displayed on the
Username of the system.
desklib-logo
You’re reading a preview
Preview Documents

To View Complete Document

Click the button to download
Subscribe to our plans

Download This Document