UCSY's Research Repository

Effective Web Application Vulnerability Testing System Using Proposed XSS_SQL_Scanning_Algorithm

Show simple item record

dc.contributor.author Aung, Thinzar
dc.contributor.author Myint, Zin Thu Thu
dc.date.accessioned 2022-06-20T08:08:12Z
dc.date.available 2022-06-20T08:08:12Z
dc.date.issued 2021-02-25
dc.identifier.uri https://onlineresource.ucsy.edu.mm/handle/123456789/2609
dc.description.abstract Nowadays, many people use the internet for more than one purposes. Among these purposes, they mostly apply the web application which is one of the internet usage technologies. A web application is composed of a web server and web browser in other terms client-side and server-side. Web applications are typically developed with a limitation of time and usually, application developers make mistakes in the code which can cause application vulnerabilities. If the vulnerability appears, some of the irresponsible people who are attackers will exploit web applications through a vulnerability to obtain some privileges in the system. Due to the widespread use of web applications, it is essential to discover vulnerabilities to avoid the exploitation of web applications. Various well-known scanners are available for detecting vulnerabilities. In this paper, our proposed algorithm can also find out vulnerability as these scanners. The proposed algorithm presented in this paper can find the two types of vulnerability, Structured Query Language (SQL) injection and Cross-site Scripting (XSS) attacks that are a huge risk for victim businesses and they are mostly occur in the web application. Besides, our proposed algorithm applies the Naïve pattern matching algorithm even though other several methods completed in the string searching process, because they are still having complexities in constructing the preprocessing phase. Moreover, the response message returned by the proposed algorithm is too short enough to match by this pattern matching algorithm approach. The proposed system does not take too much system memory so that it saves the memory consumption. Finally, we test our proposed system using the well-known scanner and evaluate how accurate the results based on having false negative and false positive rate. en_US
dc.publisher ICCA en_US
dc.subject XSS_SQL_Scanning_Algorithm, Naïve String Search Algorithm, Cross-site Scripting (XSS), Structured Query Language (SQL) Injection, web application en_US
dc.title Effective Web Application Vulnerability Testing System Using Proposed XSS_SQL_Scanning_Algorithm en_US
dc.type Presentation en_US


Files in this item

This item appears in the following Collection(s)

Show simple item record

Search Repository



Browse

My Account

Statistics