Interested in learning more about security?
SANS Institute InfoSec Reading Room
This paper is from the SANS Institute Reading Room site. Reposting is not permitted without express written permission.
Client Fingerprinting via Analysis of Browser Scripting Environment
An essential part of any Web Application Penetration Test that includes the exploitation of clients is the ability to accurately fingerprint the end point. There exists the ability to determine potentially unique characteristics of the client through the innate scripting functions provided within each major browser. These characteristics range from identifying the browser to the operating system (O/S). The level of detail that can be obtained based on identified characteristics can range from simply identifying the ...
Copyright SANS Institute Author Retains Full Rights