Javascript must be enabled for the correct page display

An Exploration of Current Techniques in OWASP Vulnerability Detection and Improvement Opportunities

Veres, Andrei-Claudiu (2023) An Exploration of Current Techniques in OWASP Vulnerability Detection and Improvement Opportunities. Master's Internship Report, Computing Science.

[img]
Preview
Text
mCS_2023_VeresAC.pdf

Download (669kB) | Preview
[img] Text
toestemming.pdf
Restricted to Registered users only

Download (148kB)

Abstract

Web applications are foundational in today's digital landscape, necessitating advanced security measures. This study delves into Interactive Application Security Testing (IAST) and Web Fuzzing, two pivotal techniques for detecting web vulnerabilities. We systematically evaluate their strengths and weaknesses, emphasizing their potential in addressing vulnerabilities highlighted by the OWASP Top 10. While IAST excels in real-time vulnerability detection, Web Fuzzing offers an expansive approach, adept at uncovering elusive edge cases. Our research suggests that combining these techniques could lead to substantial enhancements in web application security. Additionally, we introduce the idea of an open-source IAST tool and contemplate the benefits that recent advances in artificial intelligence might bring to these techniques. Furthermore, we underscore the significance of understanding these tools' operation within the realm of cloud computing.

Item Type: Thesis (Master's Internship Report)
Supervisor name: Mohsen, F.F.M. and Wilkinson, M.H.F.
Degree programme: Computing Science
Thesis type: Master's Internship Report
Language: English
Date Deposited: 11 Oct 2023 07:17
Last Modified: 11 Oct 2023 07:17
URI: https://fse.studenttheses.ub.rug.nl/id/eprint/31519

Actions (login required)

View Item View Item