网络攻击得行为分析摘 要随着信息网络技术应用的日益普及,由于其国际性、开放性和自由性的特点,对安全提出了更高的要求。跨站攻击是针对 web 应用的一种网络攻击手段。攻击者通过跨站攻击将脚本代码注入至 web 应用中,并通过数据回显等方式反射或发送给客户端的浏览器并在客户端浏览器执行。恶意脚本将能够劫持客户端浏览器,盗取敏感数据。跨站攻击可以被攻击者视为实施进一步攻击的武器,利用跨站脚本劫持用户浏览器,注入恶意代码之后,攻击者可以结合其他攻击方式,对客户端和服务器造成更大的危害。在当前时代的网络背景下,跨站攻击逐渐成为危害巨大的攻击方式,然而,相当一部分的开发者,用户都没有意识到跨站攻击的严重性。本文根据网络公里行为展开分析首先提出选题研究背景意义,进而提相互相关概念,其次对网络攻击流程和影响因素分析,最后提出防护对策。关键词:网络攻击 行为分析 防护对策AbstractWith the increasing popularity of the application of information network technology, higher requirements have been put forward for security because of its characteristics of international, open and free. XSS is for a network attack method of web applications. The attacker by XSS attack the script into the web application, and through the data display mode of reflection or transmission to the client browser and executed on the client browser. Malicious scripts will be able to hijack client browsers and steal sensitive data. Cross site attacks can be regarded as the attacker further attacks using weapons, XSS hijack a user's browser, after the injection of malicious code, the attacker can be combined with other attacks, causing more harm to the client and server. In the current era of network background, cross site attacks gradually become dangerous attacks, however, a considerable part of the developers, users are not aware of the seriousness of the XSS attack. Based on the analysis of network kilometre behavior, this paper first puts forward the b...
