Assessment of the web application security effectiveness against various methods of network attacks
Mateusz Erbel
mateuszerbel@gmail.comInstitute of Computer Science, Lublin University of Technology, Nadbystrzycka 36B, 20-618 Lublin, Poland (Poland)
Piotr Kopniak
Institute of Computer Science, Lublin University of Technology, Nadbystrzycka 36B, 20-618 Lublin, Poland (Poland)
Abstract
The article discusses the issue of the security of Internet applications. The most popular types of attacks and methods of securing web applications against them are discussed. The study conducted the effectiveness of security of web applications. The research methodology was based on the proprietary application implemented in PHP technology. The result of the research is a proposal of solutions aimed at improving application security.
Keywords:
Network attacks; Internet applications; XSS; SQL InjectionReferences
[1] Zagrożenia aplikacji internetowych http://tadek.pietraszek.org/publications/kasprowski03_zagrozenia.pdf, luty 2018.
[2] Ziaja A.: Practical break-in analysis, PWN, 2017.
[3] Thomas, najbardziej uciążliwy cyberprzestępca https://zaufanatrzeciastrona.pl/post/thomas-najbardziejuciazliwy-polski-cyberprzestepca-zatrzymany-przez-policje/,marzec 2018.
[4] Mueller J.: Security for Web Developers. O’Reilly Media, 2015.
[5] Hope P, Walther B.: Web Security Testing Cookbook, O’Reilly Media, 2012.
[6] Agarwal M, Singh A.: Metasploit. Receptury pentestera. Helion 2014.
[7] Ataak CSRF, https://haker.edu.pl/2016/04/23/atak-csrf-xsrfi hasla-wep-9/, czerwiec 2018.
[8] Prasad P.: Testy penetracyjne nowoczesnych serwisów. Helion 2017.
[9] W3Techs – extensive and reliable web technology surveys, https://w3techs.com/, marzec 2018.
[2] Ziaja A.: Practical break-in analysis, PWN, 2017.
[3] Thomas, najbardziej uciążliwy cyberprzestępca https://zaufanatrzeciastrona.pl/post/thomas-najbardziejuciazliwy-polski-cyberprzestepca-zatrzymany-przez-policje/,marzec 2018.
[4] Mueller J.: Security for Web Developers. O’Reilly Media, 2015.
[5] Hope P, Walther B.: Web Security Testing Cookbook, O’Reilly Media, 2012.
[6] Agarwal M, Singh A.: Metasploit. Receptury pentestera. Helion 2014.
[7] Ataak CSRF, https://haker.edu.pl/2016/04/23/atak-csrf-xsrfi hasla-wep-9/, czerwiec 2018.
[8] Prasad P.: Testy penetracyjne nowoczesnych serwisów. Helion 2017.
[9] W3Techs – extensive and reliable web technology surveys, https://w3techs.com/, marzec 2018.
Erbel, M., & Kopniak, P. (2018). Assessment of the web application security effectiveness against various methods of network attacks . Journal of Computer Sciences Institute, 9, 340–344. https://doi.org/10.35784/jcsi.707
Authors
Mateusz Erbelmateuszerbel@gmail.com
Institute of Computer Science, Lublin University of Technology, Nadbystrzycka 36B, 20-618 Lublin, Poland Poland
Authors
Piotr KopniakInstitute of Computer Science, Lublin University of Technology, Nadbystrzycka 36B, 20-618 Lublin, Poland Poland
Statistics
Abstract views: 257PDF downloads: 166
License
This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.
