Implementation of Web Browser Extension For Mitigating Clickjacking Attack
Loading...
Date
2017
Authors
Journal Title
Journal ISSN
Volume Title
Publisher
FACULTY: Mathematics and Computer Science - UNIVERSITY OF MOHAMED BOUDIAF - M’SILA
Abstract
Clickjacking is an attack that tricks the victims into clicking on invisible elements of a web page to perform unwanted action which are beneficial for the attacker. Many recent researches have shown that clickjacking is the primary source of different exploitations such as cross site request forgery and phishing. In this project we proposed ClickDetector, a chrome extension to defeat the attacker attempt to perform clickjacking attacks by detecting all advanced attacks techniques reported by OWASP by analyzing requests and responses, also ClickDetector based on extension feedback to make future interaction to be more informed for new users. Users also are able to choose google safe browsing service for more protection. The obtained experimental results demonstrate that our ClickDetector extension successfully detects all the generated attacks with no false positive, this proves the effectiveness of our extension without any effect on browser performance.
Description
Keywords
Clickjacking, Frame busting, iframe, ClickDetector, Cursorjacking