Clickjacking Cheat Sheet

From OWASP
Revision as of 20:16, 14 November 2011 by Jmanico (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

DRAFT CHEAT SHEET - WORK IN PROGRESS

Introduction

This article is focused on providing developer guidance on Clickjack/UI Redress attack prevention.

Clickjacking Defenses

= Frame busting JavaScript = X-Frame-Options = NoScript = IE8 XSS filter

Restricted frames

Redefining location

Clickjacking detection

References

https://www.owasp.org/index.php/Clickjacking

OWASP Cheat Sheets Project Homepage

Developer Cheat Sheets (Builder)

Assessment Cheat Sheets (Breaker)

Mobile Cheat Sheets

OpSec Cheat Sheets (Defender)

Draft Cheat Sheets