Website Vulnerability Testing and Analysis of Website Application Using OWASP
نویسندگان
چکیده
Many businesses, organizations, and social institutions use websites to support their main tasks. The various benefits of the website must be supported by security aspects in order avoid hacking. Cyber attacks or hackers can do dangerous things like get more valuable data. So it is necessary test a good find out level vulnerability application features it. A suitable for where distributed over network grey box penetration test. This study performs testing technique using OWASP method ZAP tool. steps are collecting target information, performing automatic scanning with help ZAP, exploiting scan results, reporting, providing recommendations. results show has 12 vulnerabilities 8.3% at high 1 alert, 41.7% medium 5 alerts, 33.3% low 4 16.7 informational 2 alerts. These related matters A01-Broken Access Control, A03-Injection, A05-Security Misconfiguration, A08-Software Data Integrity Failures.
منابع مشابه
Website Fingerprinting using Traffic Analysis Attacks
Website fingerprinting is the act of recognizing web traffic through surveillance despite the use of encryption or anonymizing software. The overall idea is to leverage the fact that many web sites have specific request patterns, response byte counts, and other similar coarse features that are known beforehand. This information can be used to recognize and classify different website traffic des...
متن کاملWebsite Structure Mining using Social Network Analysis
Purpose – Web sites are typically designed attending to a variety of criteria. However, web site structure determines browsing behavior and way-finding results. The aim of this study is to identify the main profiles of web sites’ organizational structure by modeling them as graphs and considering several social network analysis features. Design/methodology/approach – A case study based on 80 in...
متن کاملWebsite Detection Using Remote Traffic Analysis
Recent work in traffic analysis has shown that traffic patterns leaked through side channels can be used to recover important semantic information. For instance, attackers can find out which website, or which page on a website, a user is accessing simply by monitoring the packet size distribution. We show that traffic analysis is even a greater threat to privacy than previously thought by intro...
متن کاملWebsite Activity Analysis Model
Knowing website traffic flow and structure is essential in order to make website successful and better target visitors. In this article website traffic and structure analysis models in combination of intelligent methods are proposed and theoretical predictions are made on how and what factor changes in website structure will affect visitor click paths and overall website activity.
متن کاملWebsite Evaluation Measures, Website User Engagement and Website Credibility for Municipal Website
This paper attempts to explore website evaluation measures specifically for information driven website such Municipal electronic government website toward website credibility and user engagement. Despite overwhelming of information source in online environment, the role of government website as a prominent government information provider becomes less preferred. Even, rapid development and conti...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: International Journal of Computer and Information System
سال: 2022
ISSN: ['2745-9659']
DOI: https://doi.org/10.29040/ijcis.v3i3.90