DESIGN AND IMPLEMENTATION OF PENETRATION TESTING IN RELATION TO WEBSECURITY

Abstract

In Recent times the use of Web-Application is increasing as a large number of E-commerce, Private and Public sectors try to make access to their product, goods and information easily accessible at low costs and little need for additional hardware or software configuration. However, in the past decade there has been an Increase in Web-Application Exploitation attacks ranging from the Aurora Attack at Google which took place in the 2000s(ZDNet,2020) A penetration test (CodeDx,2018), or pen test, is a simulated attack against Your web-based framework. Previously, the majority of penetration tests were conducted on networks, rather than on software operating on those networks. The aim of a pen test is to find bugs that can be abused by an outside intruder in your application. Penetration checking may be done against the different types of code and frameworks used in your program, such as APIs and servers. This project focuses on analysis of deployed open source Web-Applications their vulnerabilities and possible threat levels and ways to best protect the Web-Applications