Proceedings Article10.1109/SAI.2014.6918247
A case study on web application vulnerability scanning tools
Nor Izyani Daud,Khairul Azmi Abu Bakar,Mohd Shafeq Md Hasan +2 more
- 09 Oct 2014
- pp 595-600
33
TL;DR: This paper attempts to share about the tools that were used to perform vulnerability analysis within the organization and result and finding from vulnerability scanning will be discussed in detail.
read more
Abstract: This paper attempts to share about the tools that we used to perform vulnerability analysis within the organization. A study about background of tools that we had selected shall be elaborate in detail. As an experiment for the case study, we had performed vulnerability scanning that covered three different types of area; vulnerability scanning using different type of tools, vulnerability scanning using Nessus with different type of policy configuration and vulnerability scanning using Nessus with different time of executing the scanning. A detail description about the testing data, for example the project that we select and criteria for the scanning policy that we use will be explained. Result and finding from vulnerability scanning will be discussed in detail.
read more
Chat with Paper
AI Agents for this Paper
Find similar papers on Google Scholar, PubMed and Arxiv
Write a critical review of this paper
Analyze citations of this paper to find unaddressed research gaps
Citations
Evaluation of Web Vulnerability Scanners Based on OWASP Benchmark
Balume Mburano,Weisheng Si +1 more
- 01 Dec 2018
TL;DR: This paper compares the performances of some open source web vulnerability scanners of their careful choice by running them against the OWASP benchmark, which is developed by the Open Web Application Security Project (OWASP), a well-known non-profit web security organization.
A review of network vulnerabilities scanning tools: types, capabilities and functioning
Andrea Tundis,Wojciech Mazurczyk,Max Mühlhäuser +2 more
- 27 Aug 2018
TL;DR: An overview of various publicly available network vulnerabilities scanning tools is provided, in particular, the main scanning tools are identified and classified, their main features are described and finally their advantages and disadvantages are highlighted.
40
Evaluation of Open Source Web Application Vulnerability Scanners
Himli S. Abdullah
- 17 Feb 2020
TL;DR: This study evaluates two open source web application vulnerability scanners Paros and OWASP Zed Attack Proxy by testing them against two vulnerable web applications buggy web application (bWAPP) and Damn Vulnerable Web Application (DVWA).
17
Enabling multi-layer cyber-security assessment of Industrial Control Systems through Hardware-In-The-Loop testbeds
Anastasis Keliris,Charalambos Konstantinou,Nektarios Georgios Tsoutsos,Raghad Baiad,Michail Maniatakos +4 more
- 10 Mar 2016
TL;DR: This paper presents a layered analysis of vulnerabilities and threats in ICS components, that identifies the need for including real hardware components in the assessment environment and advocate the suitability of Hardware-In-The-Loop testbeds for ICS cyber-security assessment and present their advantages over other assessment environments.
17
Analyzing the traffic of penetration testing tools with an IDS
TL;DR: The aim of this work is not only to know the detection capabilities of tools, but also to know what tests are performed, which vulnerabilities they try to detect and which really has the web application.
13
References
A Study on Cyber Crimes and protection
M. Loganathan,E. Kirubakaran +1 more
- 01 Sep 2011
TL;DR: The Cyber crimes, the online security vulnerabilities and the available strategies and techniques for protection are explored.
Executing security scanning in secure software process implementation within organization
TL;DR: An overview of the cybercrime issues in Information Technology industry, specifically in Malaysia, and the process flow of the implementation of security scanning process in the organization are described.
1