An Integrated Vulnerability Assessment Tool for Web Applications

An Integrated Vulnerability Assessment Tool for Web Applications

Security criteria fixation and analysis for all the web applications developed and deployed on the internet is very much required due to the excess usage of many users accessing the application. The application has to respond in a fraction of nanoseconds for users to remain attached to the applicati...

Full description

Saved in:
Bibliographic Details
Published in:2022 5th International Conference on Multimedia, Signal Processing and Communication Technologies (IMPACT) pp. 1 - 5
Main Authors: S, Stewart Kirubakaran, Jaspher W Kathrine, G., M, Arul Xavier V, Mathew Palmer, G.
Format: Conference Proceeding
Language:English
Published: IEEE 26-11-2022
Subjects:
and exploit
Automation
availability
Computer bugs
confidentiality
integrity
Machine learning
Manuals
Multimedia communication
penetration test
Security
security criteria
Signal processing
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Security criteria fixation and analysis for all the web applications developed and deployed on the internet is very much required due to the excess usage of many users accessing the application. The application has to respond in a fraction of nanoseconds for users to remain attached to the application. In this scenario, the need to ensure the basic security requirements of Confidentiality, Integrity, and Availability is an important task. To analyze the security requirements penetration testing is being done. The process of manual penetration testing is slowly shifting towards automated testing systems. Security experts are designing automation tools to detect vulnerabilities. This paper deals with binding the known multiple vulnerabilities to find the overall vulnerability of a web application. The impact of the vulnerability is analyzed by combining multiple penetration testing tools which automatically classify the exploit model to gather information using the signature patterns (Regular Expressions). Finally, the exploit information can be viewed in the form of a report so that security patches of the vulnerabilities can be performed.
DOI:10.1109/IMPACT55510.2022.10028996