• DocumentCode
    266061
  • Title

    A case study on web application vulnerability scanning tools

  • Author

    Daud, Nor Izyani ; Abu Bakar, Khairul Azmi ; Md Hasan, Mohd Shafeq

  • Author_Institution
    MIMOS Berhad Kuala Lumpur, Kuala Lumpur, Malaysia
  • fYear
    2014
  • fDate
    27-29 Aug. 2014
  • Firstpage
    595
  • Lastpage
    600
  • Abstract
    This paper attempts to share about the tools that we used to perform vulnerability analysis within the organization. A study about background of tools that we had selected shall be elaborate in detail. As an experiment for the case study, we had performed vulnerability scanning that covered three different types of area; vulnerability scanning using different type of tools, vulnerability scanning using Nessus with different type of policy configuration and vulnerability scanning using Nessus with different time of executing the scanning. A detail description about the testing data, for example the project that we select and criteria for the scanning policy that we use will be explained. Result and finding from vulnerability scanning will be discussed in detail.
  • Keywords
    Internet; security of data; Nessus; Web application vulnerability scanning tools; policy configuration; scanning policy; security scanning; testing data; Computer crime; Feeds; Licenses; Organizations; Software; Testing; scanning tool; security scanning; security scanning tool; vulnerability analysis; web application vulnerability scanning;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Science and Information Conference (SAI), 2014
  • Conference_Location
    London
  • Print_ISBN
    978-0-9893-1933-1
  • Type

    conf

  • DOI
    10.1109/SAI.2014.6918247
  • Filename
    6918247