Chapter 8. XML Attacks
In this chapter, we'll cover some techniques for attacking XML parsers. XML parsers are basically programs or libraries which take an XML document as input, then parse the same for retrieving the content in a meaningful and easy way. For those who are unaware, eXtensible Markup Language (XML) is used for data exchange purposes. XML syntax at a glance looks very similar to HTML but it is used only for storing data, albeit in a more organized way. By default, an XML document is just a plain text document which actually does nothing. To make use of XML we need programs which actually read the file and do something meaningful based on them, and hence XML parsers come into the picture. XML is open standard, free, and is supported ...
Get Mastering Modern Web Penetration Testing now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.