Abstract

Depending on manual solutions for finding security vulnerabilities in web applications is time-consuming, error-prone, and requires high levels of expertise. This paper proposes a model for an automated extension-based penetration testing for web vulnerabilities that is compatible with any web application. It consists of three stages that start with information gathering, followed by a vulnerability assessment process to test for exploit. The results are then automatically generated as a report at the conclusion. To examine the model, a tool is developed based on the suggested model. Results demonstrate that the proposed technique has effectively and promptly identified application’s vulnerabilities.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
A Semi Automated Approach to Assess Web Vulnerability Scanner Tools Effectiveness
Tania Basso ... Mario Jino
-
Tania Basso, et. al.Tania Basso ... Mario Jino
11 Nov 2013
Automatically fixing security vulnerabilities in Java code
Aharon Abadi ... Yishai A Feldman
-
Aharon Abadi, et. al.Aharon Abadi ... Yishai A Feldman
22 Oct 2011
Website Penetration Analysis Against XSS Attacks using Payload Method
Luthfi Arian Nugraha
Journal of Innovation Information Technology and Application (JINITA) | VOL. 6
Luthfi Arian Nugraha Luthfi Arian Nugraha
28 Jun 2024
Web Security Aware by using Naive Baye’s ML Technique
Manjunatha K M* ... Dr M Kempanna
International Journal of Innovative Technology and Exploring Engineering | VOL. 9
Manjunatha K M*, et. al.Manjunatha K M* ... Dr M Kempanna
28 Feb 2020
View more papers

More From: Procedia Computer Science

Paper Title
Journal
Date
Author
Navigating the Digital Landscape of Diabetes Care: Current State of the Art and Future Directions
Helena Gonçalves ... António Godinho
Procedia Computer Science | VOL. 237
Helena Gonçalves, et. al.Helena Gonçalves ... António Godinho
31 May 2024
Sustainable Social Business: Contribution of Social Innovation and Civil Society
Thayane De Souza Amaral ... Sérgio Ricardo Da Silveira Barros
Procedia Computer Science | VOL. 237
Thayane De Souza Amaral, et. al.Thayane De Souza Amaral ... Sérgio Ricardo Da Silveira Barros
31 May 2024
New haptic systems for elicit emotions in audio-visual events for hearing impaired people.
Garcia-Lopez Alvaro ... Cerdán Víctor
Procedia Computer Science | VOL. 237
Garcia-Lopez Alvaro, et. al.Garcia-Lopez Alvaro ... Cerdán Víctor
31 May 2024
Characterization and Performance Evaluation of ESP32 for Real-time Synchronized Sensor Networks
M.J Espinosa-Gavira ... Juan José González De-La-Rosa
Procedia Computer Science | VOL. 237
M.J Espinosa-Gavira, et. al.M.J Espinosa-Gavira ... Juan José González De-La-Rosa
31 May 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.