Web Application Security: Threats, Countermeasures, and Pitfalls

Hsiu Chuan Huang, Zhi Kai Zhang, Hao Wen Cheng, Shiuhpyng Shieh

Research output: Contribution to specialist publicationArticle

35 Scopus citations

Abstract

Penetration testing is a crucial defense against common web application security threats such as SQL injection and cross-site scripting attacks. A proposed web vulnerability scanner automatically generates test data with combinative evasion techniques, significantly expanding test coverage and revealing more vulnerabilities.

Original languageEnglish
Pages81-85
Number of pages5
Volume50
No6
Specialist publicationComputer
DOIs
StatePublished - 1 Jan 2017

Keywords

  • combinative evasion
  • cross-site scripting
  • cybersecurity
  • Cybertrust
  • filters
  • firewalls
  • Open Web Application Security Project
  • OWASP
  • penetration testing
  • security
  • SQL injection
  • VulScan
  • web vulnerability scanner
  • XSS

Fingerprint

Dive into the research topics of 'Web Application Security: Threats, Countermeasures, and Pitfalls'. Together they form a unique fingerprint.

Cite this