Title :
A case study on web application vulnerability scanning tools
Author :
Daud, Nor Izyani ; Abu Bakar, Khairul Azmi ; Md Hasan, Mohd Shafeq
Author_Institution :
MIMOS Berhad Kuala Lumpur, Kuala Lumpur, Malaysia
Abstract :
This paper attempts to share about the tools that we used to perform vulnerability analysis within the organization. A study about background of tools that we had selected shall be elaborate in detail. As an experiment for the case study, we had performed vulnerability scanning that covered three different types of area; vulnerability scanning using different type of tools, vulnerability scanning using Nessus with different type of policy configuration and vulnerability scanning using Nessus with different time of executing the scanning. A detail description about the testing data, for example the project that we select and criteria for the scanning policy that we use will be explained. Result and finding from vulnerability scanning will be discussed in detail.
Keywords :
Internet; security of data; Nessus; Web application vulnerability scanning tools; policy configuration; scanning policy; security scanning; testing data; Computer crime; Feeds; Licenses; Organizations; Software; Testing; scanning tool; security scanning; security scanning tool; vulnerability analysis; web application vulnerability scanning;
Conference_Titel :
Science and Information Conference (SAI), 2014
Conference_Location :
London
Print_ISBN :
978-0-9893-1933-1
DOI :
10.1109/SAI.2014.6918247
