URL Redirection is the redirection from a web page based on a specific web page address issued to a visitor. These are
common practice and used on most medium to large scale website. The issue is that if a hacker gets access to a
websites redirection scripts, then the user can redirect all incoming traffic to a particular website and
point them towards a hacked website. If this hacked website looks exactly like the real website then a user
will not know that they are on a malicious website and will assume they are using a trusted source.
WebSafe will test for URL Redirection:
This test is harder than a typical malicious hack. As most websites have a custom URL Redirection module in
place already. We need try and amend the current module or create our own that will by-pass the correct URL
Redirecting module. By doing this we can tell if a website is vulnerable to URL Redirection.