XXS refers to Cross-site scripting (XSS), is a type of computer security vulnerability typically found in web applications which allow code injection by malicious web users into the web pages, where the html code wll be executed for malicious purpose when viewed by other users. XSS has been listed top Internet threat by web security organization OWASP in 2007. With appearance of more interactive virtual spaces and web content such as social networks, Blog, Wiki, Twitter, and free spaces, XSS exploitation is meeting a trend of further increase. Typical example is Samy, the world's first XSS developed by a hacker named Samy to propagate across the MySpace site. In 20 hours it has infected a million MySpace users and finally corrupt the site.

 

By conducting deep analysis on HTTP/HTTPS protocols, Anchiva accurately define and decode all kinds of factors such as cookie, get parameter, and post forms to recover the original information which rightly indicate the trace of attacking content. While traditional IPS products usually cannot do this and fail to provide effective inspection to these web application targeted attacks.