Vulnerability Scanner: Web-based Security Testing

Chromium, File Inclusion Attacks, NodeJS, Puppeteer, SQL Injection, Vulnerability Scanner, Web Application Security, Testing

Authors

  • Andrei-Daniel ANDRONESCU
    andronescu.andreidaniel@gmail.com (Primary Contact)
    Faculty of Electronics, Telecommunications and Information Technology, University POLITEHNICA of Bucharest, Romania
  • Ioana-Ilona BRĂSLAȘU Faculty of Electronics, Telecommunications and Information Technology, University POLITEHNICA of Bucharest, Romania
  • Dumitru-Iulian NĂSTAC Faculty of Electronics, Telecommunications and Information Technology, University POLITEHNICA of Bucharest, Romania
2023-05-30

Downloads

As the use of internet-based software increased, cybersecurity has emerged as a major issue in the current world. The fast-paced technology innovations allowed most companies to scale their business, consumers to access easier their favorite products, thus increasing the reliance on web-based software. The importance of web security cannot be emphasized given the increase in cybercrime and the damage it poses to businesses, people, and governments. This paper proposes an automated solution capable of detecting and exploiting common vulnerabilities found on web-based software, this being done without performing any malicious intended operations. By using software capable of automatically detecting the means a client could communicate with a server, users can ensure that a thorough verification is done on their web-applications, revealing the blind spots that developers may have overlook.