Veres, Andrei-Claudiu (2023) An Exploration of Current Techniques in OWASP Vulnerability Detection and Improvement Opportunities. Master's Internship Report, Computing Science.
|
Text
mCS_2023_VeresAC.pdf Download (669kB) | Preview |
|
![[img]](https://fse.studenttheses.ub.rug.nl/style/images/fileicons/text.png) |
Text
toestemming.pdf Restricted to Registered users only Download (148kB) |
Abstract
Web applications are foundational in today's digital landscape, necessitating advanced security measures. This study delves into Interactive Application Security Testing (IAST) and Web Fuzzing, two pivotal techniques for detecting web vulnerabilities. We systematically evaluate their strengths and weaknesses, emphasizing their potential in addressing vulnerabilities highlighted by the OWASP Top 10. While IAST excels in real-time vulnerability detection, Web Fuzzing offers an expansive approach, adept at uncovering elusive edge cases. Our research suggests that combining these techniques could lead to substantial enhancements in web application security. Additionally, we introduce the idea of an open-source IAST tool and contemplate the benefits that recent advances in artificial intelligence might bring to these techniques. Furthermore, we underscore the significance of understanding these tools' operation within the realm of cloud computing.
| Item Type: | Thesis (Master's Internship Report) |
|---|---|
| Supervisor name: | Mohsen, F.F.M. and Wilkinson, M.H.F. |
| Degree programme: | Computing Science |
| Thesis type: | Master's Internship Report |
| Language: | English |
| Date Deposited: | 11 Oct 2023 07:17 |
| Last Modified: | 11 Oct 2023 07:17 |
| URI: | https://fse.studenttheses.ub.rug.nl/id/eprint/31519 |
Actions (login required)
 |
View Item |