Research Article
Automation Techniques to Increase Accuracy of Website Vulnerability: A Review
|
International Journal of Computer Applications
Foundation of Computer Science (FCS), NY, USA
|
| Volume 178 - Issue 38 |
| Published: Aug 2019 |
| Authors: Srishti Dikshit, Brajesh Kumar Singh |
10.5120/ijca2019919262
|
Srishti Dikshit, Brajesh Kumar Singh . Automation Techniques to Increase Accuracy of Website Vulnerability: A Review. International Journal of Computer Applications. 178, 38 (Aug 2019), 35-36. DOI=10.5120/ijca2019919262
@article{ 10.5120/ijca2019919262,
author = { Srishti Dikshit,Brajesh Kumar Singh },
title = { Automation Techniques to Increase Accuracy of Website Vulnerability: A Review },
journal = { International Journal of Computer Applications },
year = { 2019 },
volume = { 178 },
number = { 38 },
pages = { 35-36 },
doi = { 10.5120/ijca2019919262 },
publisher = { Foundation of Computer Science (FCS), NY, USA }
}
%0 Journal Article
%D 2019
%A Srishti Dikshit
%A Brajesh Kumar Singh
%T Automation Techniques to Increase Accuracy of Website Vulnerability: A Review%T
%J International Journal of Computer Applications
%V 178
%N 38
%P 35-36
%R 10.5120/ijca2019919262
%I Foundation of Computer Science (FCS), NY, USA
Abstract
There are many types of tools for finding the vulnerability of the website online through internet. This review paper, “Automation Techniques to Increase Accuracy of Website vulnerability”, focused on the accuracy, review and the results of the web application scanners (Appscan by IBM, Accunetix [2], Retina web bt eEye, Hailstorm by Cenzic, Webinspect by HP). Thi study consists of ‘Point & Shoot’ (PaS) as well as ‘Trained’ scans which were performed for every scanner. The ‘trained’ scans, each tool was made to be aware of all the pages of the websites that was supposed to test, mitigating the limitations of the scanners are in the results. Testing the effectiveness of these five web vulnerability scanners in following areas: Number of vulnerability using Point & Shoot (PaS). Number of vulnerability finding after the tool was trained. Report of vulnerability based on accuracy.
References
- Larry Suto, Application Security Consultant, “Analyzing the Accuracy and Time Costs of Web Application Security Scanners”, Beyond Trust Software, Inc. (pp.2-19), 2010.
- Acunetix - Website security - keep in check with Acunetix. (n.d.). Retrieved from https://www.acunetix.com
- Jasmine, M. S., Devi, K., & George, G. (2017). Detecting XSS based Web Application Vulnerabilities. International Journal of Computer Technology & Applications, 8(2), 291-297.
- OWASP [Open Web Application Security Project]. (2015, October 6). Path Traversal. Retrieved from https://www.owasp.org/index.php/Path_Traversal.
- Saeed, F. A. (2014). Using WASSEC to evaluate commercial Web Application Security Scanners. International Journal of Soft Computing and Engineering, 4(1), 177-181.
- Levin, D. (2017, March 14). How Should We Address the Cyber security Threats Facing K12 Schools? Retrieved from https://www.edtechstrategies.com/blog/how-should-weaddress-cybersecurity-threats-facing-k-12-schools/.
- Jeeva, S., Raveena, K., Sangeetha, K., & Vinothini, P. (2016). Web Vulnerability Scanner using Software Fault Injection Techniques. International Journal of Advanced Research Trends in Engineering and Technology, 3(2), 637-649. Retrieved from https://www.researchgate.net/publication/303756552_WEB_VULNERABILITY_SC ANNER_USING_SOFTWARE_FAULT_INJECTION_TECHNIQUES.
Index Terms
Keywords