Using web security scanners to detect vulnerabilities in web services
Although Web services are becoming business-critical components, they are often deployed
with critical software bugs that can be maliciously explored. Web vulnerability scanners …
with critical software bugs that can be maliciously explored. Web vulnerability scanners …
Building a test suite for web application scanners
E Fong, R Gaucher, V Okun, PE Black… - Proceedings of the …, 2008 - ieeexplore.ieee.org
This paper describes the design of a test suite for thorough evaluation of web application
scanners. Web application scanners are automated, black-box testing tools that examine …
scanners. Web application scanners are automated, black-box testing tools that examine …
Web application scanners: definitions and functions
E Fong, V Okun - … Conference on System Sciences (HICSS'07), 2007 - ieeexplore.ieee.org
There are many commercial software security assurance tools that claim to detect and
prevent vulnerabilities in application software. However, a closer look at the tools often …
prevent vulnerabilities in application software. However, a closer look at the tools often …
State of the art: Automated black-box web application vulnerability testing
J Bau, E Bursztein, D Gupta… - 2010 IEEE symposium on …, 2010 - ieeexplore.ieee.org
Black-box web application vulnerability scanners are automated tools that probe web
applications for security vulnerabilities. In order to assess the current state of the art, we …
applications for security vulnerabilities. In order to assess the current state of the art, we …
A survey on web application vulnerabilities and countermeasures
H Atashzar, A Torkaman, M Bahrololum… - 2011 6th …, 2011 - ieeexplore.ieee.org
Security vulnerabilities continue to infect web applications, allowing attackers to access
sensitive data and exploiting legitimate web sites as a hosting ground for malware …
sensitive data and exploiting legitimate web sites as a hosting ground for malware …
Pixy: A static analysis tool for detecting web application vulnerabilities
The number and the importance of Web applications have increased rapidly over the last
years. At the same time, the quantity and impact of security vulnerabilities in such …
years. At the same time, the quantity and impact of security vulnerabilities in such …
Evaluation of web vulnerability scanners
Y Makino, V Klyuev - 2015 IEEE 8th International Conference …, 2015 - ieeexplore.ieee.org
In recent yeas a lot of web applications have been released in the world. At the same time,
cyber attacks against web application vulnerabilities have also increased. In such a …
cyber attacks against web application vulnerabilities have also increased. In such a …
Vulnerability & attack injection for web applications
In this paper we propose a methodology to inject realistic attacks in Web applications. The
methodology is based on the idea that by injecting realistic vulnerabilities in a Web …
methodology is based on the idea that by injecting realistic vulnerabilities in a Web …
Benchmarking vulnerability detection tools for web services
Vulnerability detection tools are frequently considered the silver-bullet for detecting
vulnerabilities in web services. However, research shows that the effectiveness of most of …
vulnerabilities in web services. However, research shows that the effectiveness of most of …
A stateful intrusion detection system for world-wide web servers
G Vigna, W Robertson, V Kher… - 19th Annual Computer …, 2003 - ieeexplore.ieee.org
Web servers are ubiquitous, remotely accessible, and often misconfigured. In addition,
custom Web-based applications may introduce vulnerabilities that are overlooked even by …
custom Web-based applications may introduce vulnerabilities that are overlooked even by …