Detection of web appication vulnerability based on RUP model

Abstract

Web applications become an important part for Communication now days. As the popularity of the web application increases like online transaction, net banking and many more, the role of web security has been increase as well. Web applications vulnerabilities let attackers to carry out malicious activities that range from gaining unauthorized access or stealing the sensitive data. Past research have shown a significant increase in the number of web application vulnerabilities which is still growing constantly. Vulnerability scanner is a tool used for verify whether web applications are vulnerable or not when they are subjected to improper input validation. Even though there are number of tools available for web application vulnerability still latest attacks (like attacks occur in HTML5) are hard to find. Web application scanner is a security tool designed to find out security holes in your web applications that an attacker can access to your whole system and data for malicious purpose. These tools used to find the multiple vulnerabilities including SQL injection, cross site scripting etc. This paper demonstrates how easy it is for attackers to automatically discover and exploit web application-level vulnerabilities in a large number of web applications. Using this research paper researcher can examine how vulnerability scanner work and components to implement any vulnerability scanner for improvement of web application security. This approach allows researcher/developer to develop an extensive good web application vulnerability scanner.