FUZZING SERVER RESPONSES TO MALICIOUS CLIENT DEVICES

摘要

A security device may receive a request, from a client device and intended for a server device, to provide a resource. The resource may be associated with information stored by the server device. The security device may identify the request as being associated with a malicious script. The malicious script may execute on the client device and may include a script that performs one or more undesirable tasks directed to the server device. The security device may receive, from the server device, a response to the request. The response may include information associated with the requested resource. The security device may modify the response to form a modified response. The response may be modified in an attempt to cause the malicious script to experience an error. The security device may provide the modified response to the client device.

主权项

1. A security device, comprising:
one or more processors to:
receive a request, from a client device and intended for a server device, to provide a resource,
the resource being associated with information stored by the server device;identify the request as being associated with a malicious script,
the malicious script executing on the client device and including a script that performs one or more undesirable tasks directed to the server device;receive, from the server device, a response to the request,
the response including information associated with the requested resource;modify the response to form a modified response,
the response being modified in an attempt to cause the malicious script to experience an error; andprovide the modified response to the client device.