Web Application Vulnerabilities Detection Techniques Survey

被引:0
|
作者
Khochare, Nilesh [1 ]
Chalurkar, Satish [1 ]
Meshram, B. B. [1 ]
机构
[1] VJTI, Comp Dept, Mumbai, Maharashtra, India
来源
INTERNATIONAL JOURNAL OF COMPUTER SCIENCE AND NETWORK SECURITY | 2013年 / 13卷 / 06期
关键词
Software assurance; software security; software security assurance tool; web application; vulnerability;
D O I
暂无
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
There are many commercial software security assurance tools that claim to detect and prevent vulnerabilities in application software. However, a closer look at the tools often leaves one wondering which tools find what vulnerabilities. This paper identifies taxonomy of software security assurance tools and defines one type of tool: web application scanner, i.e., an automated program that examines web applications for security vulnerabilities. We describe the types of functions that are generally found in a web application scanner and how to test it.
引用
收藏
页码:71 / 75
页数:5
相关论文
共 50 条
  • [1] A Survey on Web Application Vulnerabilities and Countermeasures
    Atashzar, Hasty
    Torkaman, Atefeh
    Bahrololum, Marjan
    Tadayon, Mohammad H.
    [J]. 2011 6TH INTERNATIONAL CONFERENCE ON COMPUTER SCIENCES AND CONVERGENCE INFORMATION TECHNOLOGY (ICCIT), 2012, : 647 - 652
  • [2] A Survey on Detection and Prevention of Web Vulnerabilities
    Noman, Muhammad
    Iqbal, Muhammad
    Manzoor, Amir
    [J]. INTERNATIONAL JOURNAL OF ADVANCED COMPUTER SCIENCE AND APPLICATIONS, 2020, 11 (06) : 521 - 540
  • [3] A Survey on Session Management Vulnerabilities in Web Application
    Namitha, P.
    Keerthijith, P.
    [J]. 2018 INTERNATIONAL CONFERENCE ON CONTROL, POWER, COMMUNICATION AND COMPUTING TECHNOLOGIES (ICCPCCT), 2018, : 528 - 532
  • [4] Detection of Web Application Vulnerabilities Accelerated by GPU
    Li, Shaotao
    [J]. PROCEEDINGS OF THE 2016 4TH INTERNATIONAL CONFERENCE ON MECHANICAL MATERIALS AND MANUFACTURING ENGINEERING (MMME 2016), 2016, 79 : 329 - 331
  • [5] Access Control Vulnerabilities Detection for Web Application Components
    Wang, Qian
    Sun, Jinan
    Wang, Chen
    Zhang, Shikun
    Xuanyuan, Sisi
    Zheng, Bin
    [J]. 2020 IEEE 6TH INT CONFERENCE ON BIG DATA SECURITY ON CLOUD (BIGDATASECURITY) / 6TH IEEE INT CONFERENCE ON HIGH PERFORMANCE AND SMART COMPUTING, (HPSC) / 5TH IEEE INT CONFERENCE ON INTELLIGENT DATA AND SECURITY (IDS), 2020, : 24 - 28
  • [6] Effect of Coding Styles in Detection of Web Application Vulnerabilities
    Medeiros, Iberia
    Neves, Nuno
    [J]. 2020 16TH EUROPEAN DEPENDABLE COMPUTING CONFERENCE (EDCC 2020), 2020, : 111 - 118
  • [7] A New Framework of Security Vulnerabilities Detection in PHP Web Application
    Zhao, Jingling
    Gong, Rulin
    [J]. 2015 9TH INTERNATIONAL CONFERENCE ON INNOVATIVE MOBILE AND INTERNET SERVICES IN UBIQUITOUS COMPUTING IMIS 2015, 2015, : 271 - 276
  • [8] A Survey on Deception Techniques for Securing Web Application
    Efendi, Mohd A., I
    Ibrahim, Z.
    Zawawi, Ahmad M. N.
    Rahim, Abdul F.
    Pahri, Mohamad N. A.
    Ismail, A.
    [J]. 2019 IEEE 5TH INTL CONFERENCE ON BIG DATA SECURITY ON CLOUD (BIGDATASECURITY) / IEEE INTL CONFERENCE ON HIGH PERFORMANCE AND SMART COMPUTING (HPSC) / IEEE INTL CONFERENCE ON INTELLIGENT DATA AND SECURITY (IDS), 2019, : 328 - 331
  • [9] Web Application Security Vulnerabilities Detection Approaches: a Systematic Mapping Study
    Rafique, Sajjad
    Humayun, Mamoona
    Hamid, Bushra
    Abbas, Ansar
    Akhtar, Muhammad
    Iqbal, Kamil
    [J]. 2015 16TH IEEE/ACIS INTERNATIONAL CONFERENCE ON SOFTWARE ENGINEERING, ARTIFICIAL INTELLIGENCE, NETWORKING AND PARALLEL/DISTRIBUTED COMPUTING (SNPD), 2015, : 469 - 474
  • [10] Web Application Attack Detection and Forensics: A Survey
    Babiker, Mohammed
    Karaarslan, Enis
    Hoscan, Yasar
    [J]. 2018 6TH INTERNATIONAL SYMPOSIUM ON DIGITAL FORENSIC AND SECURITY (ISDFS), 2018, : 344 - 349
12345