Improving penetration testing through static and dynamic analysis

Halfond, William G. J.; Choudhary, Shauvik Roy; Orso, Alessandro

doi:10.1002/stvr.450

Cited by 34 publications

(17 citation statements)

References 39 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The software testing for venerability detection is mostly focused on test information collection, response analysis, improving test adequacy and accuracy, and performance evaluation [12,17]. Other related researches focus on the efficient generation of test data, recognition of test interface, and how to determine whether the actual output according with expectations [8,18] .…”

Section: Detection Methods Based On Software Testingmentioning

confidence: 99%

See 1 more Smart Citation

Review of XSS Attack and Detection on Web Applications

Zhao¹,

Wang²,

Ding³

2017

Proceedings of the International Conference on Computer Networks and Communication Technology (CNCT 2016)

View full text Add to dashboard Cite

Abstract. Aiming at the difficulties to prevent Web applications to be maliciously injected which are increased by all kinds of dynamic Web technologies applied, concentrate on XSS attack, this paper reviews the research progresses of Web application injection vulnerabilities detection in recent years. It summarizes the classification and causes of the XSS injection security vulnerabilities, analyzes the complexity of security vulnerabilities detection; then proposes the key technologies of the existing detection approached, including analyzing and identifying the injection points, injection detection by software analysis and testing, symbolic execution, taint analysis; finally presents its future development direction.

show abstract

Section: Detection Methods Based On Software Testingmentioning

confidence: 99%

“…Parsing Java Script codes on the client-side can crawl pages in Ajax applications [31]. The crawled XSS vulnerabilities can be automatically repaired [32].Analyzing the source codes of Web applications may find more injection points than the crawling method [12].…”

Section: Key Technologies Of Xss Attack Detection Injection Point Anamentioning

confidence: 99%

Review of XSS Attack and Detection on Web Applications

Zhao¹,

Wang²,

Ding³

2017

Proceedings of the International Conference on Computer Networks and Communication Technology (CNCT 2016)

View full text Add to dashboard Cite

show abstract

“…Besides, SQLIA is difficult to detect and prevent as it has many types, approaches and various evading SQLIA detection and prevention techniques (Joshi & Geetha, 2014). Victims of SQLIA sometimes are not even aware of their information leakage until the time after SQLIA has been successfully executed (Halfond, Choudhary, & Orso, 2011).…”

Section: Concepts and Definitionmentioning

confidence: 99%

Exploring Defense of SQL Injection Attack in Penetration Testing

Zhu

Yan

2017

International Journal of Digital Crime and Forensics

View full text Add to dashboard Cite

SQLIA is adopted to attack websites with and without confidential information.Hackers utilize the compromised website as intermediate proxy to attack others for avoiding being committed of cyber-criminal and also enlarging the scale of Distributed Denial of Service Attack (DDoS). The DDoS is that hackers maliciously turn down a website and make network resources unavailable to web users. It is extremely difficult to effectively detect and prevent SQLIA because hackers adopt various evading SQLIA Intrusion Detection System techniques. Victims always are not aware of that their confidential information has been compromised for a long time.The contributions of this thesis are: (1) systematically explore SQLIA, SQLIA prevention in theory; (2)

show abstract

“…analyses static code and runtime behaviour to find bugs. Other approaches combine both approaches to find security vulnerabilities in web sites [26] and to debug and repair faults in Java programs [51].…”

Section: Related Workmentioning

confidence: 99%

DLint: dynamically checking bad coding practices in JavaScript

Gong

Pradel

Sridharan

et al. 2015

Proceedings of the 2015 International Symposium on Software Testing and Analysis

View full text Add to dashboard Cite

JavaScript is becoming one of the most popular languages, yet it is known for its suboptimal design. To effectively use JavaScript despite its design flaws, developers try to follow informal code quality rules that help avoiding correctness, maintainability, performance, and security problems. Lightweight static analyses, implemented in "lint-like" tools, are widely used to find violations of these rules, but are of limited use because of the language's dynamic nature. This paper presents DLint, a dynamic analysis approach to check code quality rules in JavaScript. DLint consists of a generic framework and an extensible set of checkers that each address a particular rule. We formally describe and implement 28 checkers that address problems missed by state-of-the-art static approaches. Applying the approach in a comprehensive empirical study on over 200 popular web sites shows that static and dynamic checking complement each other. On average per web site, DLint detects 49 problems that are missed statically, including visible bugs on the web sites of IKEA, Hilton, eBay, and CNBC.

show abstract

Improving penetration testing through static and dynamic analysis

Cited by 34 publications

References 39 publications

Review of XSS Attack and Detection on Web Applications

Review of XSS Attack and Detection on Web Applications

Exploring Defense of SQL Injection Attack in Penetration Testing

DLint: dynamically checking bad coding practices in JavaScript

Contact Info

Product

Resources

About