Assessment of the web application security effectiveness against various methods of network attacks

Mateusz Erbel

mateuszerbel@gmail.com
Institute of Computer Science, Lublin University of Technology, Nadbystrzycka 36B, 20-618 Lublin, Poland (Poland)

Piotr Kopniak


Institute of Computer Science, Lublin University of Technology, Nadbystrzycka 36B, 20-618 Lublin, Poland (Poland)

Abstract

The article discusses the issue of the security of Internet applications. The most popular types of attacks and methods of securing web applications against them are discussed. The study conducted the effectiveness of security of web applications. The research methodology was based on the proprietary application implemented in PHP technology. The result of the research is a proposal of solutions aimed at improving application security.


Keywords:

Network attacks; Internet applications; XSS; SQL Injection

[1] Zagrożenia aplikacji internetowych http://tadek.pietraszek.org/publications/kasprowski03_zagrozenia.pdf, luty 2018.
[2] Ziaja A.: Practical break-in analysis, PWN, 2017.
[3] Thomas, najbardziej uciążliwy cyberprzestępca https://zaufanatrzeciastrona.pl/post/thomas-najbardziejuciazliwy-polski-cyberprzestepca-zatrzymany-przez-policje/,marzec 2018.
[4] Mueller J.: Security for Web Developers. O’Reilly Media, 2015.
[5] Hope P, Walther B.: Web Security Testing Cookbook, O’Reilly Media, 2012.
[6] Agarwal M, Singh A.: Metasploit. Receptury pentestera. Helion 2014.
[7] Ataak CSRF, https://haker.edu.pl/2016/04/23/atak-csrf-xsrfi hasla-wep-9/, czerwiec 2018.
[8] Prasad P.: Testy penetracyjne nowoczesnych serwisów. Helion 2017.
[9] W3Techs – extensive and reliable web technology surveys, https://w3techs.com/, marzec 2018.
Download


Published
2018-12-30

Cited by

Erbel, M., & Kopniak, P. (2018). Assessment of the web application security effectiveness against various methods of network attacks . Journal of Computer Sciences Institute, 9, 340–344. https://doi.org/10.35784/jcsi.707

Authors

Mateusz Erbel 
mateuszerbel@gmail.com
Institute of Computer Science, Lublin University of Technology, Nadbystrzycka 36B, 20-618 Lublin, Poland Poland

Authors

Piotr Kopniak 

Institute of Computer Science, Lublin University of Technology, Nadbystrzycka 36B, 20-618 Lublin, Poland Poland

Statistics

Abstract views: 280
PDF downloads: 189