FRINK Linked Data Fragments server

Matches in SemOpenAlex for { <https://semopenalex.org/work/W1861561811> ?p ?o ?g. }

• W1861561811 endingPage "26" @default.
• W1861561811 startingPage "26" @default.
• W1861561811 abstract "Black-box web vulnerability scanners are a popular choice for finding security vulnerabilities in web applications in an automated fashion. These tools operate in a point-and-shootmanner, testing any web application-- regardless of the server-side language--for common security vulnerabilities. Unfortunately, black-box tools suffer from a number of limitations, particularly when interacting with complex applications that have multiple actions that can change the application's state. If a vulnerability analysis tool does not take into account changes in the web application's state, it might overlook vulnerabilities or completely miss entire portions of the web application.We propose a novel way of inferring the web application's internal state machine from the outside--that is, by navigating through the web application, observing differences in output, and incrementally producing a model representing the web application's state.We utilize the inferred state machine to drive a black-box web application vulnerability scanner. Our scanner traverses a web application's state machine to find and fuzz user-input vectors and discover security flaws. We implemented our technique in a prototype crawler and linked it to the fuzzing component from an open-source web vulnerability scanner.We show that our state-aware black-box web vulnerability scanner is able to not only exercise more code of the web application, but also discover vulnerabilities that other vulnerability scanners miss." @default.
• W1861561811 created "2016-06-24" @default.
• W1861561811 creator A5022177364 @default.
• W1861561811 creator A5050638880 @default.
• W1861561811 creator A5050806439 @default.
• W1861561811 creator A5075685499 @default.
• W1861561811 date "2012-08-08" @default.
• W1861561811 modified "2023-09-26" @default.
• W1861561811 title "Enemy of the state: a state-aware black-box web vulnerability scanner" @default.
• W1861561811 cites W1488890761 @default.
• W1861561811 cites W1489243061 @default.
• W1861561811 cites W150512592 @default.
• W1861561811 cites W1517402704 @default.
• W1861561811 cites W1559255981 @default.
• W1861561811 cites W1600776630 @default.
• W1861561811 cites W1975428729 @default.
• W1861561811 cites W1979931683 @default.
• W1861561811 cites W1983142587 @default.
• W1861561811 cites W2002079460 @default.
• W1861561811 cites W2003115932 @default.
• W1861561811 cites W2006591097 @default.
• W1861561811 cites W2024442685 @default.
• W1861561811 cites W2058226530 @default.
• W1861561811 cites W2079452443 @default.
• W1861561811 cites W2096791889 @default.
• W1861561811 cites W2111487235 @default.
• W1861561811 cites W2114452345 @default.
• W1861561811 cites W2117353399 @default.
• W1861561811 cites W2125672377 @default.
• W1861561811 cites W2132791332 @default.
• W1861561811 cites W2136579066 @default.
• W1861561811 cites W2140919237 @default.
• W1861561811 cites W2146656763 @default.
• W1861561811 cites W2149612134 @default.
• W1861561811 cites W2158326123 @default.
• W1861561811 cites W2169528473 @default.
• W1861561811 cites W2170188121 @default.
• W1861561811 cites W2494779131 @default.
• W1861561811 cites W33764377 @default.
• W1861561811 cites W345637930 @default.
• W1861561811 cites W77717277 @default.
• W1861561811 hasPublicationYear "2012" @default.
• W1861561811 type Work @default.
• W1861561811 sameAs 1861561811 @default.
• W1861561811 citedByCount "30" @default.
• W1861561811 countsByYear W18615618112012 @default.
• W1861561811 countsByYear W18615618112013 @default.
• W1861561811 countsByYear W18615618112014 @default.
• W1861561811 countsByYear W18615618112015 @default.
• W1861561811 countsByYear W18615618112016 @default.
• W1861561811 countsByYear W18615618112017 @default.
• W1861561811 countsByYear W18615618112018 @default.
• W1861561811 countsByYear W18615618112019 @default.
• W1861561811 countsByYear W18615618112020 @default.
• W1861561811 countsByYear W18615618112021 @default.
• W1861561811 crossrefType "proceedings-article" @default.
• W1861561811 hasAuthorship W1861561811A5022177364 @default.
• W1861561811 hasAuthorship W1861561811A5050638880 @default.
• W1861561811 hasAuthorship W1861561811A5050806439 @default.
• W1861561811 hasAuthorship W1861561811A5075685499 @default.
• W1861561811 hasConcept C111065885 @default.
• W1861561811 hasConcept C111919701 @default.
• W1861561811 hasConcept C118643609 @default.
• W1861561811 hasConcept C136764020 @default.
• W1861561811 hasConcept C137176749 @default.
• W1861561811 hasConcept C13743948 @default.
• W1861561811 hasConcept C154945302 @default.
• W1861561811 hasConcept C15744967 @default.
• W1861561811 hasConcept C167063184 @default.
• W1861561811 hasConcept C172776598 @default.
• W1861561811 hasConcept C21959979 @default.
• W1861561811 hasConcept C22111027 @default.
• W1861561811 hasConcept C2777904410 @default.
• W1861561811 hasConcept C29983905 @default.
• W1861561811 hasConcept C38652104 @default.
• W1861561811 hasConcept C39569185 @default.
• W1861561811 hasConcept C41008148 @default.
• W1861561811 hasConcept C527648132 @default.
• W1861561811 hasConcept C542102704 @default.
• W1861561811 hasConcept C59241245 @default.
• W1861561811 hasConcept C79373723 @default.
• W1861561811 hasConcept C94966114 @default.
• W1861561811 hasConcept C95713431 @default.
• W1861561811 hasConceptScore W1861561811C111065885 @default.
• W1861561811 hasConceptScore W1861561811C111919701 @default.
• W1861561811 hasConceptScore W1861561811C118643609 @default.
• W1861561811 hasConceptScore W1861561811C136764020 @default.
• W1861561811 hasConceptScore W1861561811C137176749 @default.
• W1861561811 hasConceptScore W1861561811C13743948 @default.
• W1861561811 hasConceptScore W1861561811C154945302 @default.
• W1861561811 hasConceptScore W1861561811C15744967 @default.
• W1861561811 hasConceptScore W1861561811C167063184 @default.
• W1861561811 hasConceptScore W1861561811C172776598 @default.
• W1861561811 hasConceptScore W1861561811C21959979 @default.
• W1861561811 hasConceptScore W1861561811C22111027 @default.
• W1861561811 hasConceptScore W1861561811C2777904410 @default.
• W1861561811 hasConceptScore W1861561811C29983905 @default.
• W1861561811 hasConceptScore W1861561811C38652104 @default.

• next