Essays about: "OWASP top ten"

Found 5 essays containing the words OWASP top ten.

  1. 1. WebLang: A Prototype Modelling Language for Web Applications : A Meta Attack Language based Domain Specific Language for web applications

    University essay from KTH/Skolan för elektroteknik och datavetenskap (EECS)

    Author : Mille af Rolén; Niloofar Rahmani; [2023]
    Keywords : Meta Attack Language; Domain Specific Language; OWASP; Attack Simulations; Cyber Attacks; Threat Modelling; OWASP Juice Shop; Broken Access Control; Meta Attack Language; Domän Specifikt Språk; OWASP; Attack Simuleringar; Cyber Attacker; Hotmodellering; OWASP Juice Shop; Broken Access Control;

    Abstract : This project explores how a Meta Attack Language based Domain Specific Language for web applications can be used to threat model web applications in order to evaluate and improve web application security. Organizations and individuals are targeted by cyberattacks every day where malicious actors could gain access to sensitive information. READ MORE

  3. 2. Performance of DevOps compared to DevSecOps : DevSecOps pipelines benchmarked!

    University essay from Linköpings universitet/Institutionen för datavetenskap

    Author : Jimmy Björnholm; [2020]
    Keywords : CI CD; DevOps; DevSecOps; Benchmarking; Cybersecurity;

    Abstract :     This paper examines how adding security tools to a software pipeline affect the build time. Software development is an ever-changing field in a world where computers are trusted with almost everything society does. READ MORE

  4. 3. Project X : All-in-one WAF testing tool

    University essay from Linnéuniversitetet/Institutionen för datavetenskap och medieteknik (DM)

    Author : Amata Anantaprayoon; [2020]
    Keywords : Web application vulnerability; OWASP top ten; Web Application Firewall; WAF; WAF testing; WAF testing tool; Modsecurity; AWS WAF; XSS; SQLI;

    Abstract : Web Application Firewall (WAF) is used to protect the Web application (web app). One of the advantages of having WAF is, it can detect possible attacks even if there is no validation implemented on the web app. READ MORE

  5. 4. Evaluation of the applicability of security testing techniques in continuous integration environments

    University essay from Linköpings universitet/Institutionen för datavetenskap; Linköpings universitet/Tekniska högskolan

    Author : Pontus Thulin; [2015]
    Keywords : Security Testing; Continuous Integration; Agile Security; Automated security testing;

    Abstract : Agile development methodologies are becoming increasingly popular, especially in projects that develop web applications. However, incorporation of software security in lightweight approaches can be difficult. READ MORE

  6. 5. HTML5 Web application security with OWASP

    University essay from Blekinge Tekniska Högskola/Sektionen för datavetenskap och kommunikation

    Author : Daniel Nilsson; Hampus Åberg; [2013]
    Keywords : HTML5; OWASP; W3C; WHATWG;

    Abstract : HTML5 has gained a lot of interest the last couple of years from web developers. HTML5 is the new upcoming standard for HTML set to be released in the end of 2014 (W3C). In this report HTML5 is reviewed in order to determine if it has made web applications more secure. This is done with information study and the use of experimental test cases. READ MORE