Thursday, 21 November 2013

Hello friends, 

I did my research work on "Web Application Security Threats and Defense Using Open Source Tools". I also published a paper in the IJCA journal related to this topic titled "Programmer Protocol for Identification and Defense of Latest Web Application Security Threats Using Open Source Tools" which can be found on the link:

The abstract of the paper is: 

There has been an exponential increase in the number of 
attacks on web applications during the recent years. This 
paper presents a guideline for programmers to develop robust 
web applications in terms of security by identification of latest 
web application security vulnerabilities and devising their 
control using open source dynamic and static web application 
security assessment tools. A highly vulnerable web 
application is taken as a sample and it is projected to dynamic 
tools which lookup for security loopholes in it according to its 
behavior in the actual working environment and static tools 
lookup for security loopholes in the programming logics by 
static analysis of the actual source code. Finally, the concept 
of a static analysis monitoring tool is given which can serve a 
fool proof solution for one of the most encountered attack 
namely, Cross Site Scripting (XSS).