Web Applications Assessment Tools: Comparison and Discussion

Web Applications Assessment Tools: Comparison and Discussion ( Vol-4,Issue-1,January - February 2019 )

Author: Mohamad Swead, Dr. Muhammad Mazen Almustafa

eecjournal doi crossrefDOI: 10.22161/eec.4.1.2

Keyword: Web scanner, SQL Injection, XSS, Vulnerability, Assessment.

Abstract: Recently web applications have proliferated rapidly, with the world increasingly dependent on financial transactions, purchasing, billing, education, medicine, and many more. But the security of these applications is worrying because it directly affects the end-user. Therefore, it is necessary to detect security vulnerabilities in those applications that may cause significant user problems. Most commonly used approach to detect those vulnerabilities are assessments tools like web scanners. This paper will focus on usage of these web scanners and their related methodology to detect the various vulnerabilities in web applications and then compare these scanners depending on results.


[1] OWASP, 1 October 2018. [Online]. Available: https://www.owasp.org/index.php/Main_Page.
[2] E. K. C. K. a. N. J. Stefan Kals, “SecuBat: A Web Vulnerability Scanner,” International World Wide Web Conference Committee, pp. 247-256, 2006.
[3] Nessus. [Online]. Available: https://www.tenable.com/products/nessus/nessus-professional. [Accessed 1 10 2018].
[4] ACUNTIX. [Online]. Available: https://www.acunetix.com/. [Accessed 1 10 2018].
[5] C. Baojiang, L. Baolian and H. Tingting, “Reverse analysis method of static XSS defect detection technique based on database query language,” in P2P, Parallel, Grid, Cloud and Internet Computing (3PGCIC), 2014 Ninth International Conference on, 2014.

Cite this Article: Show All (MLA | APA | Chicago | Harvard | IEEE | Bibtex)

Total View: 112 Downloads: 0 Page No: 15-19