lnu.sePublications
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Web application and WAF vulnerabilities
Linnaeus University, Faculty of Technology, Department of Computer Science.
2017 (English)Independent thesis Basic level (degree of Bachelor), 180 HE creditsStudent thesis
Abstract [en]

With the growth of the internet, web pages evolved from being simple static information providers to web sites and nowadays to web apps. Symbiotically, flaws in security followed this development which in its turn could cause devastating damages to many areas of our lives. This report researches vulnerabilities that exist in web apps nowadays, in addition to the lack of proper protection that WAFs should offer. Selected web applications and WAFs with default rulesets were put through the tests for SQLi and XSS attacks. The conclusion that was derived was that the WAFs in question were not secure enough and that in fact there are issues with out-of-the-box rules that come with Web Application Firewalls in general.

Place, publisher, year, edition, pages
2017. , 21 p.
Keyword [en]
web apps, web application firewall, WAF, XSS, SQLi, internet security
National Category
Computer Science
Identifiers
URN: urn:nbn:se:lnu:diva-67344OAI: oai:DiVA.org:lnu-67344DiVA: diva2:1135003
Subject / course
Computer Science
Educational program
Network Security Programme, 180 credits
Supervisors
Examiners
Available from: 2017-08-22 Created: 2017-08-22 Last updated: 2017-08-22Bibliographically approved

Open Access in DiVA

attachment(894 kB)6 downloads
File information
File name ATTACHMENT01.pdfFile size 894 kBChecksum SHA-512
e117d265685af7e62f8bb00b83fb98e18f028f196d2af3997b1ba4104ee5d9527e1fa514fd5b7e79d8ed2e46ab098537c18be7f2bb165acddedcdf6b545df7bc
Type attachmentMimetype application/pdf

By organisation
Department of Computer Science
Computer Science

Search outside of DiVA

GoogleGoogle Scholar
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

Total: 48 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf