O'Reilly logo

Mastering Modern Web Penetration Testing by Prakhar Prasad

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Chapter 8. XML Attacks

In this chapter, we'll cover some techniques for attacking XML parsers. XML parsers are basically programs or libraries which take an XML document as input, then parse the same for retrieving the content in a meaningful and easy way. For those who are unaware, eXtensible Markup Language (XML) is used for data exchange purposes. XML syntax at a glance looks very similar to HTML but it is used only for storing data, albeit in a more organized way. By default, an XML document is just a plain text document which actually does nothing. To make use of XML we need programs which actually read the file and do something meaningful based on them, and hence XML parsers come into the picture. XML is open standard, free, and is supported ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required