Results 1 to 10 of about 420 (169)

Comparative evaluation of approaches & tools for effective security testing of Web applications [PDF]

open access: yesPeerJ Computer Science
It is generally accepted that adopting both static application security testing (SAST) and dynamic application security testing (DAST) approaches is vital for thorough and effective security testing.
Sana Qadir   +3 more
doaj   +3 more sources

Mapping the OWASP Top Ten to Blockchain

open access: yesProcedia Computer Science, 2020
Abstract The OWASP Top Ten List is a widely-recognized tool for identifying vulnerabilities in web applications. Since blockchain-specific security guidance is currently lacking, mapping existing frameworks, such as OWASP, to the blockchain can help in the identification of potential vulnerabilities in blockchain systems.
exaly   +2 more sources

A Framework to Secure the Development and Auditing of SSL Pinning in Mobile Applications: The Case of Android Devices [PDF]

open access: yesEntropy, 2019
The use of mobile devices has undergone rapid growth in recent years. However, on some occasions, security has been neglected when developing applications.
Francisco José Ramírez-López   +4 more
doaj   +2 more sources

Security-oriented agile approach with AgileSafe and OWASP ASVS [PDF]

open access: yesAnnals of computer science and information systems, 2019
In this paper we demonstrate a security enhancing approach based on a method called AgileSafe that can be adapted to support the introduction of OWASP ASVS compliant practices focused on improving security level to the agile software development process.
Katarzyna Łukasiewicz, Sara Cygańska
doaj   +3 more sources

Web Application Protection Optimization Through Coraza WAF: Performance Assessment Against OWASP Risks in Reverse Proxy Configurations

open access: yesEngineering Proceedings
This study presents an evaluation of Coraza Web Application Firewall (WAF) performance when integrated with two reverse proxy environments, Caddy and Envoy, which utilize the Open Web Application Security Project (OWASP) Core Rule Set version 4.15.0 ...
Aldrin Reyes Narvaez   +2 more
exaly   +3 more sources

Evaluation Framework for False Positives in Open-Source WAFs Based on OWASP CRS Paranoia Levels: A Systematic Approach for Comparative Measurement

open access: yesEngineering Proceedings
This work presents a systematic and modular framework to evaluate the detection of false positives (FPs) in open-source Web Application Firewalls (WAFs), implementing the OWASP Core Rule Set (CRS) and considering four different paranoia levels (PL1–PL4).
Aldrin Reyes Narvaez
exaly   +3 more sources

Mobile Security Risks Overview [PDF]

open access: yesInformatică economică, 2021
Engineers give careful consideration to programming configuration so they give us a smooth and advantageous experience. Individuals readily introduce versatile applications and provide individual data, yet infrequently stop to think about the protection ...
Ioan ADASCALITEI
doaj   +1 more source

Web Vulnerability Through Cross Site Scripting (XSS) Detection with OWASP Security Shepherd

open access: yesIndonesian Journal of Information Systems, 2021
Web applications are needed as a solution to the use of internet technology that can be accessed globally, capable of displaying information that is rich in content, cost effective, easy to use and can also be accessed by anyone, anytime and anywhere. In
Ripto Mukti Wibowo, Aruji Sulaksono
doaj   +1 more source

Analisis Keamanan Website Menggunakan Standar Keamanan Open Web Application Security Project (OWASP) Studi Kasus Website Penerimaan Mahasiswa Baru Universitas Wahid Hasyim Semarang

open access: yesJurnal Informatika dan Rekayasa Perangkat Lunak, 2023
Wahid Hasyim University has a website that contains information and documents that are published and can be accessed by users. One of the most crucial websites is the New Student Admissions (PMB) website.
Ahmad Zaini, Rony Wijanarko
doaj   +1 more source

Enhancing Web Application Security through Automated Penetration Testing with Multiple Vulnerability Scanners

open access: yesComputers, 2023
Penetration testers have increasingly adopted multiple penetration testing scanners to ensure the robustness of web applications. However, a notable limitation of many scanning techniques is their susceptibility to producing false positives.
Khaled Abdulghaffar   +2 more
doaj   +1 more source

Home - About - Disclaimer - Privacy