Security testing on web application

TL;DR: This dissert focuses on how efficiently can the authors deal with these web security vulnerabilities, thus addressing active issues primarily with SQL injection attacks and the approach which could be followed to address the exploits which could occur due to vulnerabilities.

Abstract: Approach towards most web-applications were ad-hoc, thus arose a need to raise security standards as it requires much efforts to maintain in meeting its quality standards. With existing and new technologies like ASP, VB scripts, CGI, it's quite hard enough task to assess the quality of web because of the factors that influence the performance of the website. With data all over the place and with users having no minimal knowledge on how to protect their data, the dark side of technology always tried to devise its own path and is now posing a serious threat to web security with new set of computer security vulnerabilities, SQL injection and cross-site scripting (XSS). Though there were some exploits such as buffer overflow, these SQL-Injections and cross-site scripting vulnerabilities are instances of the broader class of input validation, which are a result of changing business requirements. These input validation-based vulnerabilities therefore require fundamentally new techniques to characterize and mitigate them. This dissert focuses on how efficiently can we deal with these web security vulnerabilities , thus addressing active issues primarily with SQL injection attacks. Further we will bisect the field of web applications to understand vulnerable domains and will focus on the approach which could be followed to address the exploits which could occur due to vulnerabilities and the approach or methodologies which we can use to give proper security to the web applciation.