Systematically enhancing black-box web vulnerability scanners

Please use this identifier to cite or link to this item: https://scholarbank.nus.edu.sg/handle/10635/35873

DC Field	Value
dc.title	Systematically enhancing black-box web vulnerability scanners
dc.contributor.author	VENKATRAMAN SAI SATHYANARAYAN
dc.date.accessioned	2012-12-31T18:03:41Z
dc.date.available	2012-12-31T18:03:41Z
dc.date.issued	2012-08-23
dc.identifier.citation	VENKATRAMAN SAI SATHYANARAYAN (2012-08-23). Systematically enhancing black-box web vulnerability scanners. ScholarBank@NUS Repository.
dc.identifier.uri	http://scholarbank.nus.edu.sg/handle/10635/35873
dc.description.abstract	Black-box web vulnerability scanners are a class of tools that can be used in finding security vulnerabilities in web applications automatically regardless of server-side language implementation. These tools access a web application in the same way users do. Unfortunately, black-box tools both commercial and open-source suffer from a number of limitations. In particular, advanced SQL Injection (SQLI) vulnerabilities and authentication protocol implementation flaws are not currently detected by any of these tools. In this thesis, we propose two approaches to handle the above limitations - SQLR(SQLi Revisited) and WeakAuthScan.
dc.language.iso	en
dc.subject	Web Security, Black Box Scanner, Attack, Hacker, SQL Injection, Authentication
dc.type	Thesis
dc.contributor.department	COMPUTER SCIENCE
dc.contributor.supervisor	LIANG ZHENKAI
dc.description.degree	Master's
dc.description.degreeconferred	MASTER OF SCIENCE
dc.identifier.isiut	NOT_IN_WOS
Appears in Collections:	Master's Theses (Open)

File	Description	Size	Format	Access Settings	Version
Sai_Sathyanarayan_A0068343.pdf		501.26 kB	Adobe PDF	OPEN	None	View/Download

Check