Abstract

This paper discusses methods, tools, approaches, and techniques used for the penetration testing on the cloud-based web application on Amazon AWS platform. The findings of a penetration test could be used to fix weaknesses and vulnerabilities, and significantly improve security. The testing is implemented by undertaking a malicious attack aiming to breach system networks and thereby confirm the presence of cloud infrastructure. The research focuses on cloud-based web applications' high-risk vulnerabilities such as unrestricted file upload, command injection, and cross-site scripting. The outcomes expose and approved some vulnerabilities, flaws, and mistakes in the utilised cloud based web application. It is concluded that some vulnerabilities haveto be considered before architecting the cloud system. Recommendations are proposing solutions to testing results.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
A Proposed Framework of VAPT Services in Web Application Deployed on Infrastructure as a Service (Iaas)
Noraida Haji Ali
Journal of Electrical Systems | VOL. 20
Noraida Haji Ali Noraida Haji Ali
08 Apr 2024
An implementation of real-time detection of cross-site scripting attacks on cloud-based web applications using deep learning
Isaac Odun- Ayo ... Williams Toro- Abasi
Bulletin of Electrical Engineering and Informatics | VOL. 10
Isaac Odun- Ayo, et. al.Isaac Odun- Ayo ... Williams Toro- Abasi
01 Oct 2021
Cloud-based Artificial Bee Colony Programming Web Application
Ceylan Bozogullarindan ... Celal Ozturk
-
Ceylan Bozogullarindan, et. al.Ceylan Bozogullarindan ... Celal Ozturk
01 Oct 2019
A Novel Authentication Mechanism for SecureData Access based on Encryption Key Sharing for Cloud Web Application
Shyam Prasad Teegala ... C V Guru Rao
-
Shyam Prasad Teegala, et. al.Shyam Prasad Teegala ... C V Guru Rao
25 Mar 2022
View more papers

More From: WSEAS TRANSACTIONS ON COMPUTERS

Paper Title
Journal
Date
Author
Development of an Electronic Voting System using Blockchain Technology and Deep Hybrid Learning
Md Abdul Based ... Mohammad Shorif Uddin
WSEAS TRANSACTIONS ON COMPUTERS | VOL. 23
Md Abdul Based, et. al.Md Abdul Based ... Mohammad Shorif Uddin
14 Aug 2024
Implementation of Application Specific Instruction set Processor for Approximate Computing
Akshay Deole ... Vanita Agarwal
WSEAS TRANSACTIONS ON COMPUTERS | VOL. 23
Akshay Deole, et. al.Akshay Deole ... Vanita Agarwal
14 Aug 2024
Leveraging Data Mining, Machine Learning, and Web Scraping for Forecasting Rental Housing Prices in Tunisia
Ala Balti ... Mounir Sayadi
WSEAS TRANSACTIONS ON COMPUTERS | VOL. 23
Ala Balti, et. al.Ala Balti ... Mounir Sayadi
22 Jul 2024
Medical Image Classification using a Many to Many Relation, Multilayered Fuzzy Systems and AI
Kishore Kumar Akula ... Monica Akula
WSEAS TRANSACTIONS ON COMPUTERS | VOL. 23
Kishore Kumar Akula, et. al.Kishore Kumar Akula ... Monica Akula
03 Jul 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.