Abstract
In order to improve the detection efficiency and accuracy of business logic vulnerability, a test method based on behavior characteristics was proposed. It uses the test accountes to crawl url of business system, analyzes the characteristics of request sequence, parameter attributes, request parameters, response parameters, relationship between parameters, and digs out the vulnerability, and then uses the test elements to verify whether there is a vulnerability. Experimental and analytical results show that this method which is instead of manual method can effectively detect the vulnerability of invalid identity authentication, invalid access control and sensitive information leakage.
Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
