November, 2013

Comp527 Final Project Weekly Report Nov 25

November 25, 2013 November 25, 2013
Posted in Uncategorized
Comments Off on Comp527 Final Project Weekly Report Nov 25

Comp527 Final Project Weekly Report Nov 25 Detection & Sanitization of XSS Jun Zheng (jz33) Rice University Overview We are wrapping up our previous works and doing PPT now.  Some remaining issue is how to protect <b>, as previous report indicated.

Comp527 Final Project Weekly Report Nov 18

November 18, 2013 November 18, 2013
Posted in Uncategorized
Comments Off on Comp527 Final Project Weekly Report Nov 18

Comp527 Final Project Weekly Report Nov 18 Detection & Sanitization of XSS Jun Zheng (jz33) Rice University Overview This week we made 2 progresses. One is from continuing study of OWASP[1][2], the other is from our simple Django 1.5.4 test app.   ESAPI on OWSAP As our last report, OWSAP provides some interactive Django xss […]

Comp527 Final Project Weekly Report Nov 11

November 11, 2013 November 11, 2013
Posted in Uncategorized
Comments Off on Comp527 Final Project Weekly Report Nov 11

Comp527 Final Project Weekly Report Nov 11 Detection & Sanitization of XSS Jun Zheng (jz33) Rice University Overview Accidently, I found an interesting post [1] from OWASP discussing in detailes about several loopholes an XSS attack can make impact. So our implementation of XSS test finally finds a more concrete guideline. The post separate different […]

Comp527 Final Project Weekly Report Nov 3: Milestone Report

November 5, 2013 November 5, 2013
Posted in Uncategorized
Comments Off on Comp527 Final Project Weekly Report Nov 3: Milestone Report

Comp527 Final Project Weekly Report Detection & Sanitization of XSS Jun Zheng (jz33) Chao Zhang (cz15) Rice University Overview Our project goes slowly but steadily. For now, we are focusing on 2 aspects simutaneously.   Part I On one side, our group is researching theories on XSS, that is, definition, significance, and more importantly, how […]

Comp527 Final Project Weekly Report Oct 27

November 5, 2013 November 5, 2013
Posted in Uncategorized
Comments Off on Comp527 Final Project Weekly Report Oct 27

Comp527 Final Project Weekly Report Detection & Sanitization of XSS Jun Zheng (jz33) Chao Zhang (cz15) Rice University Overview For now, our group focus on figuring out what exactly XSS is, why XSS defense is so significant and, which is more important, what kinds of challenges of XSS sanitization exist in real world industry.   […]

Comp527 Final Project Proposal v2

November 5, 2013 November 5, 2013
Posted in Uncategorized
Comments Off on Comp527 Final Project Proposal v2

Comp527 Final Project Proposal 02 Detection & Sanitization of XSS Jun Zheng (jz33) Chao Zhang (cz15) Rice University     Introduction Cross-site scripting (XSS) is a major computer security violation mostly found in web applications that allows an attacker injects malicious client side scripts, thus makes an impact to server as well as to the […]

Comp527 Final Project Proposal v1

November 5, 2013 November 5, 2013
Posted in Uncategorized
Comments Off on Comp527 Final Project Proposal v1

Comp527 Final Project Proposal: Rich Text Editor Research Group: Jun Zheng (jz33) Chao Zhang (cz15) Category: Thing to go others Date: Oct 05 2013   Introduction Rich text, also known as formatted text, as opposed to plain text, has styling information beyond the minimum of semantic elements: colours, styles (boldface, italic), sizes, and special features […]