Patent · US Active

Method for generating cross-site scripting attack

US8505080B2 · kind B2 · utility

1Cited by

2References

7Claims

0Family size

Assignee

National Taiwan University of Science and Technology · TW

Inventors

Hahn-Ming Lee · New Taipei, TW
Yi-Hsun Wang · New Taipei, TW
Kuo-Ping Wu · Taipei, TW
Ching-Hao Mao · Taipei, TW
Jerome Yeh · Taipei, TW

Key dates

Filing date	Nov 17, 2011
Grant date	Aug 6, 2013
Priority date	—
Expiry date	Nov 17, 2031

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1433
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A method for generating a cross-site scripting attack is provided. An attack string sample is analyzed for obtaining a token sequence. A string word corresponding to each token is used to replace the token for generating a cross-site scripting attack string. Accordingly, a large number of cross-site scripting attacks are generated automatically, so as to execute a penetration test for a website.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.