Review on Web Application Vulnerability scanners
Keywords:
OWASP (The Open Worldwide Application Security Project), Vulnerability, Injection, Testing, Cross Site Scripting, Web Application VulnerabilityAbstract
Using web application is very common nowadays. It has become an important and required part of our life. As the usage increases the attacks against them also increases. Because of web application vulnerabilities we may have security breaches in applications and we may have financial, legal, personal, political or business loss. This paper presents the review about common vulnerabilities of web application, how can we test about them, how can we prevent from this, what are the impacts of them and what are different tools to test about vulnerabilities.
References
[1] Altulaihan, E. A., Alismail, A., & Frikha, M. (2023). A Survey on Web Application Penetration Testing. In Electronics (Switzerland) (Vol. 12, Issue 5). MDPI. https://doi.org/10.3390/electronics12051229.
[2] https:/owasp.org/top10
[3] Krishnaraj, N., Madaan, C., Awasthi, S., Subramani, R., Avinash, H., & Mukim, S. (2023). Common vulnerabilities in real world web applications. https://www.linkedin.com/in/harsh-avinash/
[4] Shahriar, H.; North, S.; Chen, W.C.; Mawangi, E. Design and development of Anti-XSS proxy. In Proceedings of the 8th International Conference for Internet Technology and Secured Transactions (ICITST-2013), London, UK, 9–12 December 2013; pp. 4114–41111.]
[5] Park, J.S.; Sandhu, R.; Ghanta, S. RBAC on the Web by Secure Cookies. In Research Advances in Database and Information Systems Security; Springer: Boston, MA, USA; pp. 411–462
[6] Goel, J. N., & Mehtre, B. M. (2015). Vulnerability Assessment & Penetration Testing as a Cyber Defence Technology. Procedia Computer Science, 57, 710–715. https://doi.org/10.1016/j.procs.2015.07.458
[7] K. Nirmal, B. Janet and R. Kumar, "Web Application Vulnerabilities - The Hacker's Treasure," 2018 International Conference on Inventive Research in Computing Applications (ICIRCA), Coimbatore, India, 2018, pp. 58-62, doi: 10.1109/ICIRCA.2018.8597221.
[8] Appiah, V., Asante, M., Nti, I. K., & Nyarko-Boateng, O. (2018). Survey of Websites and Web Application Security Threats Using Vulnerability Assessment. https://doi.org/10.3844/jcssp.2018
[9] Using Python to Detect Web application vulnerability. (n.d.).
[10] Srivastava, G., Singh, S., Singh, S., & Kumar, S. (n.d.). Penetration Testing And Security Measures To Identify Vulnerability Inside The System. 25(3), 50–64. https://doi.org/10.9790/0661-2503015064
[11] A Process of Penetration Testing Using Various Tools. (2023). Mesopotamian Journal of Cyber Security, 94–104. https://doi.org/10.58496/mjcs/2023/014
[12] Vulnerability Scanning System Diagram. (n.d.). www.nessus.org.
[13] Berhad Kuala Lumpur, M., Azmi Abu Bakar MIMOS Berhad Kuala Lumpur, K., mie, M., & Mohd Shafeq Md Hasan, mimosmy. (2014). A Case Study on Web Application Vulnerability Scanning Tools Nor Izyani Daud (Vol. 595). www.conference.thesai.org
[14] A Study on Penetration Testing Process and Tools. (n.d.).
[15] Aslan, Ö., Aktuğ, S. S., Ozkan-Okay, M., Yilmaz, A. A., & Akin, E. (2023). A Comprehensive Review of Cyber Security Vulnerabilities, Threats, Attacks, and Solutions. In Electronics (Switzerland) (Vol. 12, Issue 6). MDPI. https://doi.org/10.3390/electronics12061333
[16] LaShanda Dukes, A Case Study on Web Application Security Testing with Tools and Manual Testing ©2013 IEEE.
[17] Abdulrahman Alzahrani, Web Application Security Tools Analysis @ 2017 IEEE 3rd International Conference on Big Data Security on Cloud.
