• Lalita

Now days the number of web based attacks are increasing considerably. The advanced persistent threat, group of very skilled, sophisticated and well organization people used to exploit that vulnerability to inject some malicious code into the system to extract valuable information. These attacks are quite dangerous and hard to treat than other type of attacks. In order to protect our system we need to protected web application that will help attacker to launch their code into the system and remain undetectable for long period of time. The adaptive phishing and spear phishing technique, cross site scripting, SQL injection etc. are commonly known tricks used by attacker. In this paper, first we description a model that help to understand various attack vectors used for launching and triggering of APT attacks. Second describes a framework, which can be used as a roadmap to analyze, prevent and detect the APT activities inside the application, system and network.

Advanced persistent threat (APT), Web Application Security, Cross site scripting (XSS), Cross site request forgery (CSRF), SQL injection Attack (SQLIA).

"PROTECTION FROM ADVANCED TENACIOUS THREAT IN WEB APPLICATION", International Journal of Emerging Technologies and Innovative Research (www.jetir.org), ISSN:2349-5162, Vol.2, Issue 10, page no.4-8, October-2015, Available :http://www.jetir.org/papers/JETIR1510002.pdf

"PROTECTION FROM ADVANCED TENACIOUS THREAT IN WEB APPLICATION", International Journal of Emerging Technologies and Innovative Research (www.jetir.org | UGC and issn Approved), ISSN:2349-5162, Vol.2, Issue 10, page no. pp4-8, October-2015, Available at : http://www.jetir.org/papers/JETIR1510002.pdf