DefinePK

Abstract

With the wide spread application of internet, the web application have become a focal target for the attackers. The cross site scripting attack popularly known as XSS attack takes advantage of the web browser rather than the application itself. This poses serious threat to the developers who got to ensure the security of the web services. Web intrusion detection systems are security programs that help the developers as well as the customers to evaluate whether events and activities occurring in a Web Application are legitimate. The objective of Web IDS is to identify intrusions with high false alarms and low detection rate while consuming minor properties. The proposed work presents an intrusion detection system that analyzes web requests looking for evidence of malicious behaviour and provides a sophisticated query analysis. The injection of vulnerabilities and attacks is indeed an effective way to evaluate security mechanisms and to point out not only their weaknesses but also ways for their improvement. This work tried a solution for the vulnerable web attacks through real time tools such as DVWA and XSS Me.