WebSocket Attacks

WebSocket connections are initiated over HTTP and are typically long-lived. Messages can be sent in either direction at any time and are not transactional in nature. The connection will normally stay open and idle until either the client or the server is ready to send a message.

WebSockets are particularly useful in situations where low-latency or server-initiated messages are required, such as real-time feeds of financial data.

To establish the connection, the browser and server perform a WebSocket handshake over HTTP.

The browser issues a WebSocket handshake.

If the server accepts the connection, it returns a WebSocket handshake response, including Connection, Upgrade and Sec-WebSocket-Accept: flags.

- STEWS

https://github.com/PalindromeLabs/STEWS

PreviousCSRF: Croos-Site Request Forgery NextHTTP Headers

Last updated 1 year ago