Greetings to all. Wow After so many days.. I am back again in blogging.. :)
Hope you all guys are fine.
So, today i am going to post about Click Jacking Vulnerability for all the beginners.
First of all, A short intro to clickjacking,
Clickjacking (User
Interface redress attack,
UI redress attack, UI redressing) is a malicious technique of tricking a Web user into
clicking on something different from what the user perceives they are clicking
on, thus potentially revealing confidential information or taking control of
their computer while clicking on seemingly innocuous web pages.
Now the question comes how to test for clickjacking,,
This type of vulnerability often allows attacker’s site
to induce user's actions on the target site even if anti-CSRF tokens are being
used. So it's important, like for the CSRF attack, to individuate web pages of
the target site that it take input from the user.
First of all, we have to find the vulnerability in the
website. For this we will be using a easy HTML code i.e IFRAME code! Many of
you may also know about it!
For testing we will be using this code.
Where in the place of the target site, there will be
your targeted site and save the file as .html
<html>
<head>
<title>Clickjack test
page</title>
</head>
<body>
<p>Website is vulnerable to clickjacking!</p>
<iframe src="http://www.target.site"
width="500" height="500"></iframe>
</body>
</html>
see the pic below for little info :
You can also find clickjacking vulnerabilities for websites offering HOFS.
That's all, thanks for reading.. and please share my blog,
will post more.. :)
Hello. Are you in need of a Hacker .I recommend (worldcyberhackers) on Gmail or whatsApp : +12678773020. I have used them and they are the best. They render services such as:
ReplyDelete-Facebook hack
-Gmail hack
-Twitter hack
-WhatsApp hack
-Mobile phone hack
-iPhone hack and recovery
-Database Hack
-Retrival of lost files
-Viber hack
-Instagram Hack
-Snapchat Hack
-University grades changing
-Bank account hack
-Bypassing of Icloud
-Verified Paypal account.