93
Cookie Poisoning
•Target: impersonation, session hijacking – privacy violation
•
•How: forge application session cookies (HTTP Cookie header) of valid, currently active user.
–Non-trivial attack involving script trying a lot of cookies
•
•Log manifestation:
–lots of requests with invalid cookies
–Can be tricky if logging does not include cookie/session ID.
•
•False alarms: expired cookies from valid users
No notes for this slide