Performance-Based Comparative Assessment of Open Source Web Vulnerability Scanners

Alsaleh, Mansour; Alomar, Noura; Alshreef, Monirah; Alarifi, Abdulrahman; Al-Salman, AbdulMalik S.

doi:10.1155/2017/6158107

Cited by 27 publications

(18 citation statements)

References 30 publications

(46 reference statements)

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Alsaleh et al 67 examined four open-source scanners, finding similar detection rates for all four. More recently, Sagar et al 7 evaluated the vulnerability detection capability of three other open-source WVSs (w3af, Skipfish, and OWASP ZAP) on the DVWA, concluding that OWASP ZAP performed better than the other scanning tools.…”

Section: Background and Related Workmentioning

confidence: 91%

An empirical comparison of commercial and open‐source web vulnerability scanners

et al. 2020

View full text Add to dashboard Cite

Web vulnerability scanners (WVSs) are tools that can detect security vulnerabilities in web services. Although both commercial and open-source WVSs exist, their vulnerability detection capability and performance vary. In this paper, we report on a comparative study to determine the vulnerability detection capabilities of eight WVSs (both open and commercial) using two vulnerable web applications: WebGoat and Damn vulnerable web application (DVWA). The eight WVSs studied were: Acunetix; HP WebInspect; IBM AppScan; OWASP ZAP; S ; Arachni; Vega; and Iron WASP. The performance was evaluated using multiple evaluation metrics: precision; recall; Youden index; OWASP web benchmark evaluation (WBE); and the web application security scanner evaluation criteria (WASSEC). The experimental results show that, while the commercial scanners are effective in detecting security vulnerabilities, some open-source scanners (such as ZAP and Skipfish) can also be effective. In summary, this study recommends improving the vulnerability detection capabilities of both the open-source and commercial scanners to enhance code coverage and the detection rate, and to reduce the number of false-positives.

show abstract

Section: Background and Related Workmentioning

confidence: 91%

An empirical comparison of commercial and open‐source web vulnerability scanners

et al. 2020

View full text Add to dashboard Cite

show abstract

“…Passive scanning technology is to send the traffic generated by our active browsing web pages to the passive scanner for scanning. The usual way is to set up a traffic agent to forward all the traffic to the passive scanner [2].…”

Section: Passive Scanning Technologymentioning

confidence: 99%

Design of web vulnerability scanner based on go language

Chen

Chen²,

Yu³

2021

MATEC Web Conf.

View full text Add to dashboard Cite

The vulnerability scanner designed in this paper completed the collection of information and scanning of vulnerability, including six parts: input assets, asset collection, vulnerability profile, plug-in upload, single case detection and report display. The framework of vue realized the front end that included six pages, and the framework of gin realized the back end. The interface completed the separation of the front and back end. The database using MySQL designed seven tables. This scanner can avoid tedious and repetitive work, it can realize automatic scanning and testing of network vulnerabilities.

show abstract

“…In the work [57], a comprehensive evaluation is performed on a set of open source DAST tools. The results of this comparative evaluation highlighted variations in the effectiveness of security vulnerability detection and indicated that there are correlations between different performance properties of these tools (e.g., scanning speed, crawler coverage, and number of detected vulnerabilities).…”

Section: Dast Tools Comparisons Studiesmentioning

confidence: 99%

On Combining Static, Dynamic and Interactive Analysis Security Testing Tools to Improve OWASP Top Ten Security Vulnerability Detection in Web Applications

Tudela

Higuera

et al. 2020

Applied Sciences

View full text Add to dashboard Cite

The design of the techniques and algorithms used by the static, dynamic and interactive security testing tools differ. Therefore, each tool detects to a greater or lesser extent each type of vulnerability for which they are designed for. In addition, their different designs mean that they have different percentages of false positives. In order to take advantage of the possible synergies that different analysis tools types may have, this paper combines several static, dynamic and interactive analysis security testing tools—static white box security analysis (SAST), dynamic black box security analysis (DAST) and interactive white box security analysis (IAST), respectively. The aim is to investigate how to improve the effectiveness of security vulnerability detection while reducing the number of false positives. Specifically, two static, two dynamic and two interactive security analysis tools will be combined to study their behavior using a specific benchmark for OWASP Top Ten security vulnerabilities and taking into account various scenarios of different criticality in terms of the applications analyzed. Finally, this study analyzes and discuss the values of the selected metrics applied to the results for each n-tools combination.

show abstract

Performance-Based Comparative Assessment of Open Source Web Vulnerability Scanners

Cited by 27 publications

References 30 publications

An empirical comparison of commercial and open‐source web vulnerability scanners

An empirical comparison of commercial and open‐source web vulnerability scanners

Design of web vulnerability scanner based on go language

On Combining Static, Dynamic and Interactive Analysis Security Testing Tools to Improve OWASP Top Ten Security Vulnerability Detection in Web Applications

Contact Info

Product

Resources

About