1. Science
  2. Publications
  3. Information Processing Systems
  4. 3(140)'2016
  5. Methodology of pen-testing web applications

Methodology of pen-testing web applications

S.M. Poroshin, O.O. Mozhaev, M.O. Mozhaev
Annotations languages:

The basic approaches to testing for vulnerability information and telecommunications and computer systems, the choice of direction made pen-test web resources. According to the methodology OWASP TOP 10 scenarios developed information collection, information analysis and testing site. Determined common mistakes and susceptibility. Based on statistics main dangers website developed methodology variant testing web application. It is concluded that further development in this direction should be conducted in a plane classification, analysis and management of individual levels of OWASP, expansion and consideration of possible cyber attacks on Web resources.
Keywords: pen-testing, Web application, site, cyber-attacks, hacking hacks, Open Web Application Security Project