Automated Web Security Testing Guide Mapping to Accelerate Process on Penetration Testing

Bekti Cahyo Hidayanto, Izzat Aulia Akbar*, Achmad Zaenuri Dahlan Putra

*Corresponding author for this work

Research output: Contribution to journalConference articlepeer-review

1 Citation (Scopus)

Abstract

Usage of website is increasing due to its ease of access. An increase in website users should be accompanied by an increase in website security to prevent unwanted things, such as data breach. Penetration testing is used to reduce risk due to security factors. OWASP has Web Security Testing Guide (WSTG) with 12 test types. Not all tests can be tested, but there are patterns that can be used as a reference whether the test is possible or not. This pattern can be used to automate test mapping for each endpoint. Thus, penetration tester does not need to do it manually.

Original languageEnglish
Pages (from-to)1412-1419
Number of pages8
JournalProcedia Computer Science
Volume234
DOIs
Publication statusPublished - 2024
Externally publishedYes
Event7th Information Systems International Conference, ISICO 2023 - Washington, United States
Duration: 26 Jul 202328 Jul 2023

Keywords

  • Penetration testing
  • automation
  • owasp
  • report
  • web security

Fingerprint

Dive into the research topics of 'Automated Web Security Testing Guide Mapping to Accelerate Process on Penetration Testing'. Together they form a unique fingerprint.

Cite this