Abstract

This research will analyze web security and how to find out whether there is a vulnerability or what could be called a vulnerability to enter gaps in the Baleomolcreative web, making the web unsafe. In analyzing whether there are vulnerabilities, the Penetration Testing Execution Standard and Vulnerability Assessment methods are used to determine whether there are gaps or vulnerabilities in the Baleomolcreative website that can be exploited by external parties. This method uses tools such as Owasp ZAP, Nikto, and Nmap which can be used to perform vulnerability scanning on a website. In this research, we succeeded in identifying 3 levels of vulnerability on the Baleomolcreative website, namely medium, low, and informational, with a total of 18 alerts generated from notifications on Owasp Zap. The scanning process includes vulnerability testing such as Content Security Policy, Anti-clickjacking Header, Dangerous JS Functions, Permissions Policy, and others.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Why Is CSP Failing? Trends and Challenges in CSP Adoption
Michael Weissbacher ... Tobias Lauinger
-
Michael Weissbacher, et. al.Michael Weissbacher ... Tobias Lauinger
01 Jan 2014
Assessing the Impact of Script Gadgets on CSP at Scale
Sebastian Roth ... Michael Backes
-
Sebastian Roth, et. al.Sebastian Roth ... Michael Backes
05 Oct 2020
Strenghtening Content Security Policy via Monitoring and URL Parameters Filtering
Dolière Francis Somé ... Tamara Rezk
-
Dolière Francis Somé, et. al.Dolière Francis Somé ... Tamara Rezk
09 Nov 2020
Complex Security Policy? A Longitudinal Analysis of Deployed Content Security Policies
Sebastian Roth ... Nick Nikiforakis
-
Sebastian Roth, et. al.Sebastian Roth ... Nick Nikiforakis
01 Jan 2020
View more papers

More From: Jurnal JTIK (Jurnal Teknologi Informasi dan Komunikasi)

Paper Title
Journal
Date
Author
Representasi Nilai Keluarga dalam Film Gara-Gara Warisan (Analisis Semiotika Roland Barthes)
Aglista Widha Azhari ... Yudha Wirawanda
Jurnal JTIK (Jurnal Teknologi Informasi dan Komunikasi) | VOL. -
Aglista Widha Azhari, et. al.Aglista Widha Azhari ... Yudha Wirawanda
01 Oct 2024
Sistem Informasi Pelayanan Orang Tua Menggunakan Rule-Based Decision Support System untuk Meningkatkan Transparansi dan Komunikasi Antara Sekolah dengan Orang Tua di SMK Bandung Percut Sei Tuan
Fiqri Fakhrizal ... Rakhmat Kurniawan R
Jurnal JTIK (Jurnal Teknologi Informasi dan Komunikasi) | VOL. -
Fiqri Fakhrizal, et. al.Fiqri Fakhrizal ... Rakhmat Kurniawan R
01 Oct 2024
The Role of Artificial Intelligence (Chat GPT) in the Development of Technology and Communication
Salwa Nur Rohmah ... Rizca Haqqu
Jurnal JTIK (Jurnal Teknologi Informasi dan Komunikasi) | VOL. -
Salwa Nur Rohmah, et. al.Salwa Nur Rohmah ... Rizca Haqqu
01 Oct 2024
Analisis Semiotika Pierce terhadap Pasangan Prabowo-Gibran dalam Pilpres 2024
Diah Fatma Sjoraida ... Robbikal Muntaha Meliala
Jurnal JTIK (Jurnal Teknologi Informasi dan Komunikasi) | VOL. -
Diah Fatma Sjoraida, et. al.Diah Fatma Sjoraida ... Robbikal Muntaha Meliala
01 Oct 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.