The Web is built on the shoulders of HTTP, a stateless protocol for transferring hypertext. Modern and complex web applications keep track of a user’s state within so-called web sessions. A session usually starts either when a user connects or logs in to a website. Logging in usually promotes a session to access sensitive functionality…