Do you have a minute?
Get your cybersecurity score for your organization.
Book Free Consultation
x
Book A Meeting
January
February
March
April
May
June
July
August
September
October
November
December
Sun
Mon
Tue
Wed
Thu
Fri
Sat
What time works?
30 minutes meeting
Asia/Kolkata Time
Almost there!
IST
Change
Cross Site Port Attack XSPA - BriskInfosec
Bint Labs
May 20, 2024
4 min. read
6,948
Cross Site Port Attack XSPA
Share:
In this article
Contents:
Introduction
Using Burp Suite Tool
Mitigationns For Xspa
Conclusion
How Briskinfosec Helps You?
Curious To Read Our Case Studies?
Last But Not The Least
You May Be Interested On
Introduction:
A web application is helpless against Cross Site Port Attack if it forms client provided URLs and does not disinfect the backend reaction obtained from remote servers previously, while sending it back to the client. The responses in specific cases can be concentrated to distinguish benefit accessibility (port status, flags), and even bring information from remote administrations in unique ways.
Detecting a potential XSPA vulnerability is very simple, if the web app takes URL as input and tries to make it connect to the port. If it analyses the output, then the vulnerability is confirmed. XSPA attack has been attempted on this testing app http://testphp.vulnweb.com/.
Once I visited this testing site, I had selected the image categories option on the site as follows:
Later I have selected the required image file it takes me to the URL as follow
Using Burp Suite Tool:
Once I visited this site, I started to capture the backend response using Burp Suite tool.
Burp Suite is a graphical tool for testing Web application security, and was mainly developed to provide a comprehensive solution for web application security checks. In addition to this basic functionality, it has some extra features such as proxy server, scanner and intruder. The tool also contains more advanced options such as a spider, a repeater, a decoder, a comparer, an extender and a sequencer.
I have cross checked this site using my localhost with some ports and had then captured the response in Burp Suite. By this method, we can precisely analyse the response for each port.
Here, I have captured the response of the image URL and had cross checked it with my localhost using port 80 (HTTP), and I can see the response 200 OK (Normal response).
Once, it fetches the average result, you can also confirm this for other ports like 22 (SSH), 21 (FTP), 25 (SMTP), 8080 (HTTPs), and you can check the result in browser as well.
During Port analysis, if any required port is closed, it fetches the result like:
It also shows the response of 200, but it displays some warning like (failed to open) or connection refused, etc. If it shows this case of errors, then you can confirm that the port is closed.
The above screenshot shows the different case of the port being opened and closed, but it shows the result without exposing the attackers IP on the server logs. Most significantly, it also reveals the backend service running on SSH.
Mitigations For XSPA Attack:
Unauthorized URLs access should be restricted.
Restrict connectivity to the internal ports.
Blacklist strange IP addresses.
Disable unwanted protocols and services.
You can block your ports using firewall for better security.
Conclusion:
XSPA vulnerability attack is mainly used to perform port scanning of a target using another vulnerable website. An attacker can also perform a DOS attack, Code Execution, and other major attacks on other vulnerable websites.
How Briskinfosec Helps You?
Briskinfosec disables the unwanted protocols and services by scrutinized security testing. We help in implementing competent firewall and monitor the incoming logs. If our scrutinised security assessments prove them to be suspicious, the signals get jeopardised. If valid, then they’re allowed. Further, effective input validation of URL is also performed. We also deliver practical awareness notions of other such attacks.
Curious to read our case studies?
All our clients know how much successful we are with our security assessments. The main reason for us to be refereed as the most successful cybersecurity organisation compared with many, is the way we perform our security assessments. Check out our case studies to know the way we rise and shine, beyond the hurdles of hackers.
Last but not the least:
Countless number of cyberattacks happen everyday, and almost everywhere. Moreover, catching sight of all those attacks and acknowledging them, with none being missed, is close to impossible. But, our Threatsploit Adversary report gets you the chance of having a glance at the most dreadful and recent cyberattacks that have happened worldwide, along with the companies affected, the type of loss faced, and much more in a single click. What else are you waiting for? Just check our report now!
Briskinfosec is a leading CyberSecurity Assessment company offering comprehensive security services, Solutions and compliance. Our CyberSecurity refers to the preventative techniques used to protect the integrity of networks, programs, data and websites from attack, damage, or unauthorized access.
This Privacy Policy was last revised on June 1st, 2024.
"Briskinfosec", "we", or "us" knows that you care how information about you is used
and shared. This Privacy Policy explains what information of yours will be collected
by Briskinfosec when you use the website and the web application services.
We are committed to process your data in accordance with the General Data Protection
Regulation (GDPR) and other relevant legislation.
We won't spam you or sell your personal information to others.
You control how we send most messages to you.
You control who you share your Applications with.
We will not use or share your information with anyone except as
described in this Privacy Policy.
We will only collect, use, and share your information as we describe in
this Privacy Policy or as you give us express permission to do.
This Privacy Policy does not apply to information we collect by other means
(including offline) or from other sources. Capitalized terms that are not defined in
this Privacy Policy have the meaning given them in our Terms of Service.
Information We Collect
User-Provided Information
You provide us information about yourself, such as your Email address, First Name, Last
Name, Company, and Phone when you register for an account with the Service. You also
provide us information in the Content and Application(s) you post to the Service. When
you engage in communication with us, we may keep records of your Name, Contact Number,
email address, Company, the content of your email messages, as well as our responses.
How We Use Your Information
We are actively managing data retention. Data is carefully managed and stored in
accordance with our policies and procedures.
We use the personal information you submit to operate, maintain, and provide to you the
features and functionality of the Service.
By submitting our web form with your email address, you agree to receive service-related
notices, including any notices required by law, in lieu of communication by postal mail.
We may use your email address to send you other messages, such as newsletters, changes
to features of the Service, or special offers. If you do not want to receive such email
messages, you may opt out or change your preferences in by contacting
support@briskinfosec.com
By submitting our web form with your contact number, you agree to receive promotional
calls on the number shared, and such calls and SMS would be coming from a third-party
platform.
Following termination or deactivation of your account, may retain your profile
information, Content for a commercially reasonable time for backup, archival, or audit
purposes. Furthermore, may retain and continue to use indefinitely all Content contained
in your communications to other users or posted to public or semi-public areas of the
Service after termination or deactivation of your account.
Briskinfosec reserves the right, but has no obligation, to monitor or remove the Content
you post on the Service if in our sole opinion such Content violates, or may violate,
any applicable law or our Terms of Service, or to protect or defend our rights or
property or those of any third party. Briskinfosec also reserves the right to remove
Content upon the request of any third party.
We use cookies and log file information to: (a) remember information so that you will not
have to re-enter it during your visit or the next time you visit the Service; (b)
provide custom, personalized content and information; (c) monitor the effectiveness of
our Service; (d) monitor aggregate metrics such as activity, traffic, and demographic
patterns; (e) diagnose or fix technology problems reported by our users or engineers
that are associated with certain IP addresses; and (f) help you efficiently access your
information after you sign in.
How We Share Your Information
Personally Identifiable Information
Briskinfosec will not rent or sell your personally identifiable information to
others. Briskinfosec may share your personally identifiable information with third
parties solely for the purpose of providing the Service to you (for instance, to
process your credit card transactions). If we do this, such third parties’ use of
your information will be bound by this Privacy Policy. We may store personal
information in locations outside the direct control of Briskinfosec (for instance,
on servers in the cloud).
As described in this Privacy Policy, Briskinfosec will not disclose personal
information to any third party unless required to do so by law or subpoena or if we
believe that such action is necessary to (a) conform to the law, comply with legal
process served on us or our affiliates, or investigate, prevent, or take action
regarding suspected or actual illegal activities; (b) to enforce our Terms of
Service, take precautions against liability, to investigate and defend ourselves
against any third-party claims or allegations, to assist government enforcement
agencies, or to protect the security or integrity of our site; and (c) to exercise
or protect the rights, property, or personal safety of Briskinfosec, our users or
others.
How We Protect Your Information
Briskinfosec uses commercially reasonable physical, managerial, and technical
safeguards to preserve the integrity and security of your personal information.
However, we guarantee for the security of any information you transmit to
Briskinfosec.
To protect your privacy and security, we take reasonable steps (such as requesting a
unique password) to verify your identity before granting you access to your account.
You are responsible for maintaining the secrecy of your unique password and account
information at all times.
Compromise of Personal Information
In the event that personal information is compromised as a result of a breach of
security, Briskinfosec will promptly notify those persons whose personal information
has been compromised, in accordance with the notification procedures set forth in
this Privacy Policy, or as otherwise required by applicable law.
Data Subject Rights
Your GDPR Rights
Right to Access: You can request details of your personal data we hold.
Right to Rectification: You can correct inaccurate or incomplete data.
Right to Erasure: You can ask us to delete your personal data.
Right to Restrict Processing: You can request to limit how we use your data.
Right to Data Portability: You can receive your data in a machine-readable
format.
Right to Object: You can oppose certain types of processing.
Rights in Relation to Automated Decision Making and Profiling: You can request
human intervention or challenge a decision based solely on automated processing.
You have the right to access, correct, delete, or transfer your data. Contact us at
contact@briskinfosec.com to exercise these rights.
Data Transfers
Data may be transferred outside the EEA under strict safeguards to protect your privacy.
Data Protection Officer
The responsibilities of the Data Protection Officer are managed by the MSSC
committee. If you have any additional questions, please feel free to contact us
at contact@briskinfosec.com
Regular Review and Updates
This policy is reviewed regularly and updated as necessary.
Purpose and Lawfulness of Processing
We collect data to operate, maintain, and improve the Service. This includes
user support, personalized content, service management, and legal obligations.
Links to Other Web Sites
We are not responsible for the practices employed by websites linked to or from
the Service, nor the information or content contained therein. Please remember
that when you use a link to go from the Service to another website, our Privacy
Policy is no longer in effect. Your browsing and interaction on any other
website, including those that have a link on our website, is subject to that
website's own rules and policies. Please read over those rules and policies
before proceeding.
Notification Procedures
It is our policy to provide notifications, whether such notifications are
required by law or are for marketing or other business-related purposes, to you
via email notice, written or hard copy notice, or through conspicuous posting of
such notice on the Service, as determined by Briskinfosec in its sole
discretion. We reserve the right to determine the form and means of providing
notifications to you, provided that you may opt out of certain means of
notification as described in this Privacy Policy.
Changes to Our Privacy Policy
If we change our privacy policies and procedures, we will post those changes on
the Service to keep you aware of what information we collect, how we use it and
under what circumstances we may disclose it. Changes to this Privacy Policy are
effective when they are posted on this page.
If you have any questions about this Privacy Policy, the practices of this site,
or your dealings with this website, please contact us at
contact@briskinfosec.com
Cookies Information
Cookies essential for website functionality respond to your actions, such as
modifying privacy settings, logging in, or completing forms.
Data retention and Disposal mechanism
Our data retention and disposal mechanism operate in strict accordance with the
terms and conditions outlined in our policies. We have implemented a systematic
approach to both storing and disposing of data to ensure that it aligns with our
established policies. This commitment underscores our dedication to maintaining
the privacy and security of your information throughout its lifecycle, in full
compliance with the agreed-upon terms and conditions.
Data is retained as long as necessary for the purposes stated, and in accordance
with legal requirements.
This website uses cookies to ensure you get the best experience. Check our Privacy Policy
Discover the Latest Cyber Threats - Stay Ahead of the Curve
Get exclusive access to our latest Threatsploit Report detailing the most
recent and sophisticated cyber attacks. Stay informed and protect your
business from emerging threats.
Book Free Consultation
It also shows the response of 200, but it displays some warning like (failed to open) or connection refused, etc. If it shows this case of errors, then you can confirm that the port is closed.
