This study is all about checking out web app vulnerabilities using the Damn Vulnerable Web Application (DVWA) platform, and it’s done through ethical hacking in a sandbox environment. We ran three big attacks to spot system flaws and figure out some workarounds: SQL Injection, Cross-Site Scripting (XSS), and Brute Force. The research involved checking for vulnerabilities and the prevention of the same by considering the types of security setups. Tools that were used were Burp Suite, SQL map, and Tamper Data, among others. It was understood here that one smart security measure - to bring down a successful degree in attacks - is the use of CAPTCHA, Web Application Firewalls, and Content Security Policies. This practice truly focuses on ethical hacking as an efficient tool to inform developers of real risks and aid them in acquiring the skills needed to construct robust defenses against potential attacks. The paper is a comprehensive guide on how to evaluate, understand, and improve web application security.

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

Sandbox-Based Real-Time Cyber Attack Simulation and Analysis

  • K. Santhi,
  • M. Lawanya Shri,
  • G. D. Nithish Kumar,
  • Tejashvi Abhinav,
  • Gaurav Sharma

摘要

This study is all about checking out web app vulnerabilities using the Damn Vulnerable Web Application (DVWA) platform, and it’s done through ethical hacking in a sandbox environment. We ran three big attacks to spot system flaws and figure out some workarounds: SQL Injection, Cross-Site Scripting (XSS), and Brute Force. The research involved checking for vulnerabilities and the prevention of the same by considering the types of security setups. Tools that were used were Burp Suite, SQL map, and Tamper Data, among others. It was understood here that one smart security measure - to bring down a successful degree in attacks - is the use of CAPTCHA, Web Application Firewalls, and Content Security Policies. This practice truly focuses on ethical hacking as an efficient tool to inform developers of real risks and aid them in acquiring the skills needed to construct robust defenses against potential attacks. The paper is a comprehensive guide on how to evaluate, understand, and improve web application security.