Search
Menu

WebSocket Hijacking

WebSockets simplify the communication between browsers and servers by overcoming some of the traditional restrictions. The WebSocket protocol uses application layer (L7) to allow a client and server to perform bidirectional (full duplix) communication. This makes it possible to create dynamic, real-time web applications such as instant messaging and photo sharing apps.

Virtually any web security vulnerability that arises with regular HTTP can also arise in relation to WebSockets communications. WebSocket hijacking attacks can lead to many vulnerabilities such as XSS, SQL injection, XXE, sensitive information disclosure, MiTM attacks, Denial of Service attacks etc. If exploitable, these attacks can lead to critical results.

See also: API Attack

Analyst Report

2022 State of API Security

Read this EMA report to understand why so many organizations have a false sense of security when it comes to APIs, how companies are documenting APIs, what they’re using them for, and best practices to keep them secure.

Read more

Contact Radware Sales

Our experts will answer your questions, assess your needs, and help you understand which products are best for your business.

Contact Us Now

Already a Customer?

We’re ready to help, whether you need support, additional services, or answers to your questions about our products and solutions.

Locations
Get Answers Now from KnowledgeBase
Get Free Online Product Training
Engage with Radware Technical Support
Join the Radware Customer Program

Get Social

Connect with experts and join the conversation about Radware technologies.

Radware Blog
Security Research Center
CyberPedia

Close

What are you looking for?