Networking and Communication Engineering

Open Access Open Access  Restricted Access Subscription Access
Open Access Open Access Open Access  Restricted Access Restricted Access Subscription Access

A Frame Work for Code Injection Attack Investigation in Windows Environment


Affiliations
1 Department of Computer Science and Engineering, Maulana Azad National Institute of Technology, India
     

   Subscribe/Renew Journal


Cyber crime committed in web environment is assuming gargantuan proportion. Code injection attack is a type of multi step attack carried out by the suspicious user via entering vulnerable code into the web form or address bar of web browser.  An attacker may post an interesting message by injecting malicious JavaScript code through browser entry point which gets stored into vulnerable web site. When a novice end user views the interesting posted message on vulnerable web site containing vulnerable code, his browser executes the malicious script, and his webpage containing session cookies redirected to attacker zone. Investigating Code Injection attacks at the attacker’s environment is a tedious job as the attacker may tamper the evidence after conducting the attack from his environment. In this paper possible Code Injection Attacks in windows environment are presented and new framework is proposed to investigate code injection attack efficiently, which captures attacker’s activities at server side instead of attacker’s environment.


Keywords

Cyber Forensic, Evidence Gathering, Input Attack, Web Server Log.
User
Subscription Login to verify subscription
Notifications
Font Size

Abstract Views: 342

PDF Views: 3




  • A Frame Work for Code Injection Attack Investigation in Windows Environment

Abstract Views: 342  |  PDF Views: 3

Authors

Deepak Singh Tomar
Department of Computer Science and Engineering, Maulana Azad National Institute of Technology, India
J. L. Rana
Department of Computer Science and Engineering, Maulana Azad National Institute of Technology, India
S. C. Shrivastava
Department of Computer Science and Engineering, Maulana Azad National Institute of Technology, India

Abstract


Cyber crime committed in web environment is assuming gargantuan proportion. Code injection attack is a type of multi step attack carried out by the suspicious user via entering vulnerable code into the web form or address bar of web browser.  An attacker may post an interesting message by injecting malicious JavaScript code through browser entry point which gets stored into vulnerable web site. When a novice end user views the interesting posted message on vulnerable web site containing vulnerable code, his browser executes the malicious script, and his webpage containing session cookies redirected to attacker zone. Investigating Code Injection attacks at the attacker’s environment is a tedious job as the attacker may tamper the evidence after conducting the attack from his environment. In this paper possible Code Injection Attacks in windows environment are presented and new framework is proposed to investigate code injection attack efficiently, which captures attacker’s activities at server side instead of attacker’s environment.


Keywords


Cyber Forensic, Evidence Gathering, Input Attack, Web Server Log.