반응형
XSS stands for Cross-site scripting.
CSRF stands for Cross-site request forgery.
Basically, in case of that, a user trusts a website which has vulnerabilities and an attacker injects a script into the trusted website. Upon executing the attacker's script this is called by XSS.
On the other hand, in case of that, a website trusts the user and attacker induce the user to perform an action which is not the user's intention. Upon executing the user's request this is called by CSRF.
반응형
'<개인공부> - IT > [Network&Security]' 카테고리의 다른 글
| UDLD란 (0) | 2020.09.16 |
|---|---|
| Etherchannel - Intro (PAgP, LACP) (0) | 2020.07.24 |
| NAT - Inside local, inside global, outside local, outside global (0) | 2020.07.18 |
| Dynamic Trunking Protocol (DTP) (0) | 2020.04.17 |
| Security Engineer (Analyst) Intern Interview Questions (0) | 2019.02.19 |
