Issue No. 06 - June (2017 vol. 50)
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MC.2017.183
Hsiu-Chuan Huang , National Chiao Tung University and Chunghwa Telecom Laboratories
Zhi-Kai Zhang , National Chiao Tung University
Hao-Wen Cheng , National Chiao Tung University
Shiuhpyng Winston Shieh , National Chiao Tung University
Penetration testing is a crucial defense against common web application security threats such as SQL injection and cross-site scripting attacks. A proposed web vulnerability scanner automatically generates test data with combinative evasion techniques, significantly expanding test coverage and revealing more vulnerabilities.
Computer security, Software testing, Information filters, Knowledge based systems, Encoding, Telecommunication services
H. Huang, Z. Zhang, H. Cheng and S. W. Shieh, "Web Application Security: Threats, Countermeasures, and Pitfalls," in Computer, vol. 50, no. 6, pp. 81-85, 2017.