SciTePress - Publication Details
loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Authors: Natan Talon 1 ; Valérie Tong 2 ; Gilles Guette 3 ; Yufei Han 4 and Youssef Laarouchi 1

Affiliations: 1 Hackuity, Lyon, France ; 2 CentraleSupélec, Rennes, France ; 3 Université de Rennes, Rennes, France ; 4 Inria, Rennes, France

Keyword(s): Pentest Automation, Web Application.

Abstract: A wide array of techniques and tools can be employed for web application security assessment. Some methods, such as fuzzers and scanners, are partially or fully automated, offering speed and cost-effectiveness. However, these tools often fall short in detecting specific vulnerabilities like broken access control and are prone to generating false positives. On the other hand, manual processes like penetration testing, though more time-consuming and necessitating expertise, provide a more comprehensive risk assessment. To overcome the limitations of automated tools, these techniques are frequently combined. Fuzzers and scanners, despite their ease of use and quick results, require the expertise of penetration testing experts to address their limitations. By integrating these approaches, a more robust and nuanced security assessment can be achieved. This article presents SCWAD, an automated and customizable penetration testing framework designed to assess vulnerabilities in web applicat ions. (More)

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 8.209.245.224

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Talon, N., Tong, V., Guette, G., Han, Y. and Laarouchi, Y. (2024). SCWAD: Automated Pentesting of Web Applications. In Proceedings of the 21st International Conference on Security and Cryptography - SECRYPT; ISBN 978-989-758-709-2; ISSN 2184-7711, SciTePress, pages 424-433. DOI: 10.5220/0012721000003767

@conference{secrypt24,
author={Natan Talon and Valérie Tong and Gilles Guette and Yufei Han and Youssef Laarouchi},
title={SCWAD: Automated Pentesting of Web Applications},
booktitle={Proceedings of the 21st International Conference on Security and Cryptography - SECRYPT},
year={2024},
pages={424-433},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0012721000003767},
isbn={978-989-758-709-2},
issn={2184-7711},
}

TY - CONF

JO - Proceedings of the 21st International Conference on Security and Cryptography - SECRYPT
TI - SCWAD: Automated Pentesting of Web Applications
SN - 978-989-758-709-2
IS - 2184-7711
AU - Talon, N.
AU - Tong, V.
AU - Guette, G.
AU - Han, Y.
AU - Laarouchi, Y.
PY - 2024
SP - 424
EP - 433
DO - 10.5220/0012721000003767
PB - SciTePress

- Science and Technology Publications, Lda.
RESOURCES

Proceedings

Papers

Authors

Ontology

CONTACTS

Science and Technology Publications, Lda
Avenida de S. Francisco Xavier, Lote 7 Cv. C,
2900-616 Setúbal, Portugal.

Phone: +351 265 520 185 (National fixed network call)
Fax: +351 265 520 186
Email: info@scitepress.org

EXTERNAL LINKS

PRIMORIS

INSTICC

SCITEVENTS

CROSSREF

PROCEEDINGS SUBMITTED FOR INDEXATION BY:

dblp

Ei Compendex

SCOPUS

Semantic Scholar

Google Scholar

Microsoft Academic