Phishing URL Detection and Vulnerability Assessment of Web Applications Using IVS Attributes with XAI

2022 ◽  
pp. 933-944
Author(s):  
Vivek John Sudhakar ◽  
Srimathi Mahalingam ◽  
Vaman Venkatesh ◽  
V. Vetriselvi
Keyword(s):  
Vulnerability Assessment ◽  
Web Applications

scholarly journals XSS Vulnerability Assessment Procedure and Mitigation for Web Application

2020 ◽  
Vol 8 (6) ◽  
pp. 5279-5281
Keyword(s):  
Vulnerability Assessment ◽  
Web Application ◽  
Web Applications ◽  
Assessment Procedure ◽  
User Comments ◽  
Web Vulnerabilities ◽  
Client Side

CSS is one of the foremost routine vulnerabilities that affect many web applications. XSS attacks are essentially malicious injections (client-side) that are added to an internet page or app through user comments, form submissions, and so on. The most danger behind XSS is that it allows attackers to inject content into the online app. The injected content can modify how it's displayed, forcing the browser to execute the attacker’s code. Web vulnerabilities are developed for scanning whole webpage of internet sites. Vulnerability Assessment is that the process of identifying vulnerabilities in your application’s environment. Vulnerability is defined as a weakness or flaw within the system that permits an attacker or insider to access the system during a way they’re not authorized.

scholarly journals Vulnerability Assessment of Web Applications using Penetration Testing

2019 ◽  
Vol 8 (4) ◽  
pp. 1552-1556
Keyword(s):  
Open Source ◽  
Vulnerability Assessment ◽  
Web Applications ◽  
Penetration Testing ◽  
Testing Methodology ◽  
Cyber Threats ◽  
The Right

In recent years, utilization of web applications, web hacking exercises have grown exponentially. Organizations are confronting extremely critical difficulties in anchoring their web applications from rising cyber threats, as bargain with the assurance issues don't appear to be the right approach. Vulnerability Assessment and Penetration Testing (VAPT) methods help us find these vulnerabilities / security loopholes in our systems even before an intruder could find a way to get it. This helps avoid zero-day exploits. This paper aims to elucidate the overview of Vulnerability Assessment and Penetration Testing and introduce the most efficient open source tools used to perform these tests. This paper also presents a combined VAPT testing methodology that incorporates strengths of several existing approaches, with the goal to understand their utility and benefit the most from the tests.

Threats and Attacks on E-Commerce Sites

2016 ◽  
pp. 70-89
Author(s):  
Kannan Balasubramanian
Keyword(s):  
United States ◽  
Vulnerability Assessment ◽  
Web Application ◽  
Web Applications ◽  
Target System ◽  
Detailed Knowledge ◽  
Web Application Security ◽  
Threat Analysis ◽  
Many Sources ◽  
The Web

In this chapter, a detailed knowledge of some of the most devastating attacks against Web applications and common tools in the attacker's arsenal is discussed. There are many ways of categorizing and classifying attacks: based on the complexity to mount them, the effect they have on the target system, the type of vulnerability that they exploit, the assets that they expose, the difficulty of detecting and fixing them, and so on. There are different methodologies for Vulnerability Assessment and Threat Analysis (VATA) and many sources to consult for assessing the risk of each attack. Among other sources, in this chapter we pay special attention to the methodology of Open Web Application Security Project (OWASP) because OWASP is one of the most active security communities on the Web. Other good resources to follow the attack and vulnerability trends are Common Vulnerabilities and Exposures (CVE), National Vulnerability Database (NVD), United States CERT Bulletins (US-CERT), and SANS.

scholarly journals Defending Against Modern Threats in Web Applications

2012 ◽  
pp. 43-46
Author(s):  
Mohit Kumar ◽  
Abhishek Gupta ◽  
Azhar Shadab ◽  
Lokesh Kumar ◽  
Vikas Kumar Tiwari
Keyword(s):  
Vulnerability Assessment ◽  
Web Applications ◽  
Sql Injection ◽  
Critical Part ◽  
Treasure Trove ◽  
Major Threat ◽  
Automated Tools ◽  
Cross Site Request Forgery ◽  
Cross Site

Web applications have become critical part of business. They hold a treasure trove of data behind their front ends. Now-adays attackers are well aware of the valuable information accessible through web applications, so website security has become a major problem today. The number of vulnerabilities have multiplied in recent years. Vulnerabilities like cross site scripting(XSS),sql injection and cross site request forgery(CSRF) has emerged as a major threat to web applications. So, in order to protect web applications from these modern threats, at first vulnerability assessment should be carried out from time to time and also some preventive techniques should be followed to prevent these threats. The motivation of this paper is to promote the use of automated tools for vulnerability assessment and to follow preventive techniques in order to make web applications secure.

scholarly journals A survey on vulnerability assessment tools and databases for cloud-based web applications

Array ◽  
2019 ◽  
Vol 3-4 ◽  
pp. 100011 ◽  
Author(s):  
Kyriakos Kritikos ◽  
Kostas Magoutis ◽  
Manos Papoutsakis ◽  
Sotiris Ioannidis
Keyword(s):  
Vulnerability Assessment ◽  
Web Applications ◽  
Assessment Tools

scholarly journals Addressing Web Application Security Issues and Vulnerabilities Assessment Pen Testing

2020 ◽  
Vol 8 (6) ◽  
pp. 2314-2321
Keyword(s):  
Vulnerability Assessment ◽  
Web Application ◽  
Web Applications ◽  
Sensitive Information ◽  
Security Measures ◽  
Security Issues ◽  
Online Sales ◽  
Application Service ◽  
Cross Site ◽  
The Web

The world relies heavily on the Internet, and every organization uses web applications extensively for information sharing, business purposes such as online sales, money transfer, etc., and Exchange services. Nowadays, providing security for web applications is the greatest challenge in the corporate world because web applications will be the main way for their daily business and if the web application is affected, then daily business and reputation will be affected. As many organizations have been using the web application service to share or store sensitive information about their clients and assets. So, Web Applications are inclined to security attacks and new security vulnerabilities have grown in the last two decades in a web application and have become an important target for attackers. So, it is very vital to secure a web application. The vulnerabilities in web applications will incur due to the security misconfigurations, programming mistakes, improper usage of security measures, etc. So, vulnerability assessment and pen testing will help to figure out the different vulnerabilities present in web applications. The websites are also using to deliver the critical services to its customers so it must run every time without any interception, to do this VAPT will play a crucial role. This paper reviews about vulnerability assessment and pretesting steps and types, website vulnerabilities like SQL Injection, Cross-Site scripting, file inclusion, cross-site request forgery, and broken authentication with types and remediations and also discuss how the effect of these vulnerabilities on a web application.

Sign in / Sign up

Export Citation Format

Share Document