Abstract

This paper discusses methods, tools, approaches, and techniques used for the penetration testing on the cloud-based web application on Amazon AWS platform. The findings of a penetration test could be used to fix weaknesses and vulnerabilities, and significantly improve security. The testing is implemented by undertaking a malicious attack aiming to breach system networks and thereby confirm the presence of cloud infrastructure. The research focuses on cloud-based web applications' high-risk vulnerabilities such as unrestricted file upload, command injection, and cross-site scripting. The outcomes expose and approved some vulnerabilities, flaws, and mistakes in the utilised cloud based web application. It is concluded that some vulnerabilities haveto be considered before architecting the cloud system. Recommendations are proposing solutions to testing results.

Full Text
Paper version not known

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
A Proposed Framework of VAPT Services in Web Application Deployed on Infrastructure as a Service (Iaas)
Noraida Haji Ali
Journal of Electrical Systems | VOL. 20
Noraida Haji Ali Noraida Haji Ali
08 Apr 2024
An implementation of real-time detection of cross-site scripting attacks on cloud-based web applications using deep learning
Isaac Odun- Ayo ... Marion Adebiyi
Bulletin of Electrical Engineering and Informatics | VOL. 10
Isaac Odun- Ayo, et. al.Isaac Odun- Ayo ... Marion Adebiyi
01 Oct 2021
Cloud-based Artificial Bee Colony Programming Web Application
Ceylan Bozogullarindan ... Celal Ozturk
-
Ceylan Bozogullarindan, et. al.Ceylan Bozogullarindan ... Celal Ozturk
01 Oct 2019
A Novel Authentication Mechanism for SecureData Access based on Encryption Key Sharing for Cloud Web Application
Shyam Prasad Teegala ... C V Guru Rao
-
Shyam Prasad Teegala, et. al.Shyam Prasad Teegala ... C V Guru Rao
25 Mar 2022
View more papers

More From: WSEAS TRANSACTIONS ON COMPUTERS

Paper Title
Journal
Date
Author
Leveraging Data Mining, Machine Learning, and Web Scraping for Forecasting Rental Housing Prices in Tunisia
Ala Balti ... Mounir Sayadi
WSEAS TRANSACTIONS ON COMPUTERS | VOL. 23
Ala Balti, et. al.Ala Balti ... Mounir Sayadi
22 Jul 2024
Medical Image Classification using a Many to Many Relation, Multilayered Fuzzy Systems and AI
Kishore Kumar Akula ... Monica Akula
WSEAS TRANSACTIONS ON COMPUTERS | VOL. 23
Kishore Kumar Akula, et. al.Kishore Kumar Akula ... Monica Akula
03 Jul 2024
Combinatorial Optimization of Engineering Systems based on Diagrammatic Design
Volodymyr Riznyk
WSEAS TRANSACTIONS ON COMPUTERS | VOL. 23
Volodymyr RiznykVolodymyr Riznyk
01 Jul 2024
Chaos in Order: Applying ML, NLP, and Chaos Theory in Open Source Intelligence for Counter-Terrorism
Ioannis Syllaidopoulos
WSEAS TRANSACTIONS ON COMPUTERS | VOL. 23
Ioannis SyllaidopoulosIoannis Syllaidopoulos
01 Jul 2024
View more papers