This is the second post in the 3 part series that explains XSPA, the attacks and possible countermeasures.| i break software - My work with different software, bug hunting and interesti...
Cross Site Port Attack (XSPA) is a vulnerability that allows attackers to fetch status of TCP ports (and grab service banners) over the Internet or internal systems by abusing a feature in web applications that makes HTTP requests using attacker supplied URLs.| i break software - My work with different software, bug hunting and interesti...
Common Weakness Enumeration (CWE) is a list of software weaknesses.| cwe.mitre.org
This is the third post in the 3 part series that explains XSPA, the attacks and possible countermeasures. In this post we will see other interesting attacks and also see how developers can prevent XSPA or limit the attack surface itself.| i break software - My work with different software, bug hunting and interesti...