BIBLIOS

Document type
Conference papers

Document subtype
Abstract

Title
Finding Web Application Vulnerabilities with an Ensemble Fuzzing

Participants in the publication
Joao Caseirito (Author)
LASIGE
Iberia Medeiros (Author)
Dep. Informática
LASIGE

Summary
Cyberattacks have been a constant on the Internet and their impact and cost have risen to billions of dollars. They are usually associated with the exploitation of vulnerabilities in web applications, the most common form of accessing services and organizations’ data. These applications support a myriad of services for handling multiples daily needs of our lives (e.g., social media, e-commerce, bank account access). There are currently almost 2 billion of websites active [1] and the number of vulnerabilities disclosed and associated with applications they handle continues growing [2] . Cross Site Scripting (XSS) and SQL injection (SQLi) are the two most prevalent web vulnerabilities and they pose the first place in OWASP Top 10 [3] . Although these vulnerability classes are really well known, they continue appearing in recent applications used by millions of consumers [4] .


Institution
FACULDADE DE CIÊNCIAS DA UNIVERSIDADE DE LISBOA

Event
2021 51st Annual IEEE/IFIP International Conference on Dependable Systems and Networks - Supplemental Volume (DSN-S)

Publication Identifiers

Address
Taipei, Taiwan

Publisher
IEEE

Document Identifiers
DOI - https://doi.org/10.1109/dsn-s52858.2021.00020
URL - http://dx.doi.org/10.1109/dsn-s52858.2021.00020

Rankings
Google Metrics (2021) - 35