Sökning: "OWASP top ten"

Hittade 5 uppsatser innehållade orden OWASP top ten.

  1. 1. WebLang: A Prototype Modelling Language for Web Applications : A Meta Attack Language based Domain Specific Language for web applications

    Kandidat-uppsats, KTH/Skolan för elektroteknik och datavetenskap (EECS)

    Författare :Mille af Rolén; Niloofar Rahmani; [2023]
    Nyckelord :Meta Attack Language; Domain Specific Language; OWASP; Attack Simulations; Cyber Attacks; Threat Modelling; OWASP Juice Shop; Broken Access Control; Meta Attack Language; Domän Specifikt Språk; OWASP; Attack Simuleringar; Cyber Attacker; Hotmodellering; OWASP Juice Shop; Broken Access Control;

    Sammanfattning : This project explores how a Meta Attack Language based Domain Specific Language for web applications can be used to threat model web applications in order to evaluate and improve web application security. Organizations and individuals are targeted by cyberattacks every day where malicious actors could gain access to sensitive information. LÄS MER

  3. 2. Performance of DevOps compared to DevSecOps : DevSecOps pipelines benchmarked!

    Kandidat-uppsats, Linköpings universitet/Institutionen för datavetenskap

    Författare :Jimmy Björnholm; [2020]
    Nyckelord :CI CD; DevOps; DevSecOps; Benchmarking; Cybersecurity;

    Sammanfattning :     This paper examines how adding security tools to a software pipeline affect the build time. Software development is an ever-changing field in a world where computers are trusted with almost everything society does. LÄS MER

  4. 3. Project X : All-in-one WAF testing tool

    Kandidat-uppsats, Linnéuniversitetet/Institutionen för datavetenskap och medieteknik (DM)

    Författare :Amata Anantaprayoon; [2020]
    Nyckelord :Web application vulnerability; OWASP top ten; Web Application Firewall; WAF; WAF testing; WAF testing tool; Modsecurity; AWS WAF; XSS; SQLI;

    Sammanfattning : Web Application Firewall (WAF) is used to protect the Web application (web app). One of the advantages of having WAF is, it can detect possible attacks even if there is no validation implemented on the web app. LÄS MER

  5. 4. Evaluation of the applicability of security testing techniques in continuous integration environments

    Master-uppsats, Linköpings universitet/Institutionen för datavetenskap; Linköpings universitet/Tekniska högskolan

    Författare :Pontus Thulin; [2015]
    Nyckelord :Security Testing; Continuous Integration; Agile Security; Automated security testing;

    Sammanfattning : Agile development methodologies are becoming increasingly popular, especially in projects that develop web applications. However, incorporation of software security in lightweight approaches can be difficult. LÄS MER

  7. 5. HTML5 Web application security with OWASP

    Kandidat-uppsats, Blekinge Tekniska Högskola/Sektionen för datavetenskap och kommunikation

    Författare :Daniel Nilsson; Hampus Åberg; [2013]
    Nyckelord :HTML5; OWASP; W3C; WHATWG;

    Sammanfattning : HTML5 has gained a lot of interest the last couple of years from web developers. HTML5 is the new upcoming standard for HTML set to be released in the end of 2014 (W3C). In this report HTML5 is reviewed in order to determine if it has made web applications more secure. This is done with information study and the use of experimental test cases. LÄS MER