General Information

Search Engine Impersonation

Variants:
Direct 

Vector Type:
Evasion Technique

Relevance:
Generic

Layer:
Web-Infrastructure-Level

Platforms:
Any

Target Type:
Web Application

Affected Mechanisms:
Anti-Automation

Invented In:
15/07/2014

Added In:
27/01/2015


Vector Operation Method:
Attackers can impersonate search engines via header spoofing in order to bypass security restrictions such as anti-scraping mechanisms or web application firewalls.


Direct Variant:

Search Engine Impersonation

Variant Title:
Search Engine Impersonation

Typical Severity:
Medium

Resources:

White Papers:

Learn More: