9 Client-Side Testing

When tackling client-side testing, the types of attacks are focused purely on the client (browser) and not vectors that move to exploit the server side of an application’s architecture. These types of attacks focus on client-side components of a system or application, such as the web browser or operating system. To find vulnerabilities and flaws, testers may employ a range of tools and methodologies, including manual testing, automated testing tools, and network scanners. You will learn to actively attack common issues, such as document object model (DOM)-based cross-site scripting (XSS), JavaScript execution such as disclosing an end user’s session cookies, HTML injection, where an attacker injects malicious code, client-side ...

Get Zed Attack Proxy Cookbook now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Zed Attack Proxy Cookbook by Ryan Soper, Nestor N Torres, Ahmed Almoailu

9

Client-Side Testing

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly