Overview and open issues on penetration test

Bertoglio, Daniel Dalalana; Zorzo, Avelino F.

doi:10.1186/s13173-017-0051-1

Cited by 37 publications

(13 citation statements)

References 68 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The content of this section revolves around examining and discussing the results of the preceding section. Based on the results derived from this research, it was found that only a very small number of surveys and overviews have been conducted on Black-box web vulnerability scanners; a majority of them revolve around merely summarizing the concepts of the approaches without targeting their characteristics and effectiveness [18], [55], [65], [78]. However, the present study contains a systematic literature review on the most cited web vulnerability scanners, summarizing their characteristics and discussing the results of different evaluation studies conducted to compare their effectiveness in detecting the common web applications vulnerabilities.…”

Section: Discussionmentioning

confidence: 99%

See 1 more Smart Citation

A Systematic Literature Review on the Characteristics and Effectiveness of Web Application Vulnerability Scanners

Alazmi

Leon

2022

IEEE Access

View full text Add to dashboard Cite

Web applications have been a significant target for successful security breaches in the last few years. They are currently secured, as a primary method, by searching for their vulnerabilities with specialized tools referred to as Web Application Vulnerability Scanners (WVS's). Although, these dynamic approaches of testing have some advantages, there is still a scarcity of studies that explore their features and detection capabilities in a systematic way. This article reports findings from a Systematic Literature Review (SLR) to look into the characteristics and effectiveness of the most frequently used WVS's. A total of 90 research papers were carefully evaluated. Thirty (30) WVS's were collected and reported, with only 12 having at least one quantitative assessment of effectiveness. These 12 WVS's were evaluated by 15 original evaluation studies. We found that these evaluations tested mostly only two of the Open Web Application Security Project (OWASP) Top Ten vulnerability types: SQL injection (SQLi) (13/15) and Cross-Site Scripting (XSS) (8/15). Additionally, only one work evaluated six of the OWASP Top Ten vulnerability types and for only one scanner. We also found that the reported detection rates were highly dissimilar between these 15 evaluations. Based on these surprising results we suggest avenues for future directions.INDEX TERMS Web applications, black-box testing, web vulnerability scanner, effectiveness and performance, OWASP top ten, detection rate.

show abstract

Section: Discussionmentioning

confidence: 99%

“…However, only a few surveys and overviews on Black-box web vulnerability scanners were returned by this research. Bertoglio and Zorzo [18] systemically reviewed 54 primary studies using quality criteria to selected papers to determine reliability and credibility. The criteria grouped papers as 'Good', ' Very good ', and 'Excellent'.…”

Section: Related Workmentioning

confidence: 99%

A Systematic Literature Review on the Characteristics and Effectiveness of Web Application Vulnerability Scanners

Alazmi

Leon

2022

IEEE Access

View full text Add to dashboard Cite

show abstract

“…Work [5] proposes a generalized model of security testing in the form of a systematic process map. The possibilities to categorize software safety risks have been described, as well as building the tables to prioritize the tasks on minimizing these risks.…”

Section: The Aim and Objectives Of The Studymentioning

confidence: 99%

“…to execute the testing preparation processThe polynomial rz 6 -yz5 -dz4 -hz 3 -xz 2 +cz+b generates seven poles. The solution to the following equation…”

mentioning

confidence: 99%

Development a mathematical model for the software security testing first stage

Semenov

Zhang

Weiling

et al. 2021

EEJET

View full text Add to dashboard Cite

This paper reports an analysis of the software (SW) safety testing techniques, as well as the models and methods for identifying vulnerabilities. An issue has been revealed related to the reasoned selection of modeling approaches at different stages of the software safety testing process and the identification of its vulnerabilities, which reduces the accuracy of the modeling results obtained. Two steps in the process of identifying software vulnerabilities have been identified. A mathematical model has been built for the process of preparing security testing, which differs from the known ones by a theoretically sound choice of the moment-generating functions when describing transitions from state to state. In addition, the mathematical model takes into consideration the capabilities and risks of the source code verification phase for cryptographic and other ways to protect data. These features generally improve the accuracy of modeling results and reduce input uncertainty in the second phase of software safety testing. An advanced security compliance algorithm has been developed, with a distinctive feature of the selection of laws and distribution parameters that describe individual state-to-state transitions for individual branches of Graphical Evaluation and Review Technique networks (GERT-networks). A GERT-network has been developed to prepare for security testing. A GERT-network for the process of checking the source code for cryptographic and other data protection methods has been developed. A graphic-analytical GERT model for the first phase of software safety testing has been developed. The expressions reported in this paper could be used to devise preliminary recommendations and possible ways to improve the effectiveness of software safety testing algorithms

show abstract

“…It is important to remember that "assessing the security state is a continuous and necessary task to understand the risks there exist. This assessment is usually performed through security tests" [57]. It always comes to a simple rule: the chain is as strong as its weakest link [58].…”

Section: Legality and Ethics Of Conducted Researchmentioning

confidence: 99%

Analysis of Tizen Security Model and Ways of Bypassing It on Smart TV Platform

Majchrowicz

Duch

2021

Applied Sciences

View full text Add to dashboard Cite

The smart TV market is growing at an ever faster pace every year. Smart TVs are equipped with many advanced functions, allow users to search, chat, browse, share, update, and download different content. That is one of the reason why smart TVs became a target for the hacker community. In this article, we decided to test security of Tizen operating system, which is one of the most popular smart TV operating systems. Tizen is used on many different devices including smartphones, notebooks, wearables, infotainment systems, and smart TVs. By now, there are articles which present security mechanisms of Tizen OS, and sometimes with a way to bypass them; however, none of them are applicable to the smart TVs. In the article, we focused on developing an algorithm that will allow us to gain root access to the smart TV. The proposed attack scenario uses CVE-2014-1303 and CVE-2015-1805 bugs to bypass or disable security mechanisms in Tizen OS and finally gain root access.

show abstract

Overview and open issues on penetration test

Cited by 37 publications

References 68 publications

A Systematic Literature Review on the Characteristics and Effectiveness of Web Application Vulnerability Scanners

A Systematic Literature Review on the Characteristics and Effectiveness of Web Application Vulnerability Scanners

Development a mathematical model for the software security testing first stage

Analysis of Tizen Security Model and Ways of Bypassing It on Smart TV Platform

Contact Info

Product

Resources

About