25-08-2017, 09:32 PM
In Today’s World, Browser is known term for every one Everybody uses Browser for Web surfing,chating, e-mail etc. Security may be easier to manage when you only have one place to look, but it's also easier for the bad guys to crack. In 2004, they could get 90% of the web just by targeting Internet Explorer on Windows. In 2008, they can still get 75-80%, still aiming at one target. Now imagine that spread out among IE, Firefox, Opera and Safari on Windows, PowerPC Macs, Intel Macs, and Linux. They'd have to settle for 10% or try to crack every combination they could. Web developers, on the other hand, designing for the common language of the web, would have no more trouble than they do today. In this dissertation we have proposed different Browser Attacks and provide security Techniques and Adds on to prevent against this attack. Clickjacking attacks are an emerging threat on the web.In this paper, we design new clickjacking attack variants using existing techniques and demonstrate that existing clickjacking defenses are insufficient. Our attacks show that clickjacking can cause severe damages, including compromising a user’s private webcam, email or other private data, and web surfing anonymity. Web framing attacks such as clickjacking use iframes to hijack a user's web session. The most common defense, called frame busting, prevents a site from functioning when loaded inside a frame. We study frame busting practices for the Alexa Top-500 sites and show that all can be circumvented in one way or another. Some circum- ventions are browser-speci_c while others work across browsers. We conclude with recommendations for proper frame busting