DocumentCode :
3700092
Title :
Evaluation of web vulnerability scanners
Author :
Yuma Makino;Vitaly Klyuev
Author_Institution :
University of Aizu, Tsuruga, Ikki-Machi, Aizu-Wakamatsu, Fukushima, Japan, 965-8580
Volume :
1
fYear :
2015
Firstpage :
399
Lastpage :
402
Abstract :
In recent yeas a lot of web applications have been released in the world. At the same time, cyber attacks against web application vulnerabilities have also increased. In such a situation, it is necessary to make web applications more secure. However checking all web vulnerabilities by hand is very difficult and time-consuming. Therefore, we need a web application vulnerability scanner. In this work, we evaluate two open source vulnerability scanners OWASP Zed Attack Proxy (OWASP ZAP) and Skipfish using vulnerable web applications Damn Vulnerable Web Application (DVWA) and The Web Application Vulnerability Scanner Evaluation Project (WAVSEP).
Keywords :
"Testing","Security","Niobium","Software","Linux","Web pages"
Publisher :
ieee
Conference_Titel :
Intelligent Data Acquisition and Advanced Computing Systems: Technology and Applications (IDAACS), 2015 IEEE 8th International Conference on
Print_ISBN :
978-1-4673-8359-2
Type :
conf
DOI :
10.1109/IDAACS.2015.7340766
Filename :
7340766
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=3700092
بازگشت