Title :
CRAXweb: Automatic Web Application Testing and Attack Generation
Author :
Shih-Kun Huang ; Han-Lin Lu ; Wai-Meng Leong ; Huan Liu
Author_Institution :
Inf. Technol. Service Center, Nat. Chiao Tung Univ., Hsinchu, Taiwan
Abstract :
This paper proposes to test web applications and generate the feasible exploits automatically, including cross-site scripting and SQL injection attacks. We test the web applications with initial random inputs by detecting symbolic queries to SQL servers or symbolic responses to HTTP servers. After symbolic outputs detected, we are able to generate attack strings and reproduce the results, emulating the manual attack behavior. In contrast with other traditional detection and prevention methods, we can determine the presence of vulnerabilities and prove the feasibility of attacks. This automatic generation process is based on a dynamic software testing method-symbolic execution by S2E. We have applied this automatic process to several known vulnerabilities on large-scale open source web applications, and generated the attack strings successfully. Our method is web platform independent, covering PHP, JSP, Rails, and Django due to the supports of the whole system environment of S2E.
Keywords :
Internet; program testing; public domain software; security of data; CRAXweb; Django platform; HTTP server; JSP platform; PHP platform; Rails platform; S2E environment; SQL injection attack; Web application attack generation; Web application testing; attack string; cross-site scripting attack; hypertext transfer protocol; manual attack behavior; open source Web application; software testing method; symbolic execution; symbolic query detection; vulnerability presence; Concrete; Databases; Generators; Security; Servers; Sockets; Testing; Web security; automatic exploit generation; symbolic execution;
Conference_Titel :
Software Security and Reliability (SERE), 2013 IEEE 7th International Conference on
Conference_Location :
Gaithersburg, MD
Print_ISBN :
978-1-4799-0406-8
DOI :
10.1109/SERE.2013.26
