Nástroj pro penetrační testování webových aplikací

Thumbnail Image

Files

MEG0007_FEI_N2647_1801T064_2019.pdf (3.21 MB)
MEG0007_FEI_N2647_1801T064_2019_priloha.zip (85.63 KB)
MEG0007_FEI_N2647_1801T064_2019_posudek_vedouci_Plucar_Jan.pdf (49.97 KB)
MEG0007_FEI_N2647_1801T064_2019_posudek_oponent_Zelinka_Ivan.pdf (46.52 KB)

Downloads

10

Date issued

2019

Authors

Journal Title

Journal ISSN

Volume Title

Publisher

Vysoká škola báňská - Technická univerzita Ostrava

Location

Signature

Abstract

This thesis deals with the issue of penetration testing in the area of web application security. The aim of the first part is to introduce the reader to the topic of penetration testing and security vulnerabilities of web applications. These theoretical findings are further applied in the analysis of the current state of web application security and in the rest of the thesis. Due to the extensiveness of the topic of penetration testing, the second part of the thesis focuses on the narrower issues of using third-party libraries and spreading of malicious code in JavaScript language. The practical part of the thesis designs solution of this specific issue and provides comparison between the developed application and existing penetration tools. Thanks to the experience and information gained during the research, the last part is devoted to recommended procedures for integration of third-party libraries.

Description

Subject(s)

penetration testing, JavaScript, OWASP, third-party library, vulnerability, security of web application, obfuscation

Citation

Item identifier

http://hdl.handle.net/10084/136338

Collections

Vysokoškolské kvalifikační práce Fakulty elektrotechniky a informatiky / Theses and dissertations of Faculty of Electrical Engineering and Computer Science (FEI)