Please use this identifier to cite or link to this item:
https://scholarbank.nus.edu.sg/handle/10635/35873
| Title: | Systematically enhancing black-box web vulnerability scanners | Authors: | VENKATRAMAN SAI SATHYANARAYAN | Keywords: | Web Security, Black Box Scanner, Attack, Hacker, SQL Injection, Authentication | Issue Date: | 23-Aug-2012 | Citation: | VENKATRAMAN SAI SATHYANARAYAN (2012-08-23). Systematically enhancing black-box web vulnerability scanners. ScholarBank@NUS Repository. | Abstract: | Black-box web vulnerability scanners are a class of tools that can be used in finding security vulnerabilities in web applications automatically regardless of server-side language implementation. These tools access a web application in the same way users do. Unfortunately, black-box tools both commercial and open-source suffer from a number of limitations. In particular, advanced SQL Injection (SQLI) vulnerabilities and authentication protocol implementation flaws are not currently detected by any of these tools. In this thesis, we propose two approaches to handle the above limitations - SQLR(SQLi Revisited) and WeakAuthScan. | URI: | http://scholarbank.nus.edu.sg/handle/10635/35873 |
| Appears in Collections: | Master's Theses (Open) |
Show full item record
Files in This Item:
| File | Description | Size | Format | Access Settings | Version | |
|---|---|---|---|---|---|---|
| Sai_Sathyanarayan_A0068343.pdf | 501.26 kB | Adobe PDF | OPEN | None | View/Download |
Google ScholarTM
Check
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.