Performance-Based Comparative Assessment of Open Source Web Vulnerability Scanners

المؤلفون المشاركون

Al-Salman, Abdulmalik S.
Alsaleh, Mansour
Alomar, Noura
Alshreef, Monirah
Alarifi, Abdulrahman

المصدر

Security and Communication Networks

العدد

المجلد 2017، العدد 2017 (31 ديسمبر/كانون الأول 2017)، ص ص. 1-14، 14ص.

الناشر

Hindawi Publishing Corporation

تاريخ النشر

2017-05-24

دولة النشر

مصر

عدد الصفحات

14

التخصصات الرئيسية

تكنولوجيا المعلومات وعلم الحاسوب

الملخص EN

The widespread adoption of web vulnerability scanners and the differences in the functionality provided by these tool-based vulnerability detection approaches increase the demand for testing their detection effectiveness.

Despite the advantages of dynamic testing approaches, the literature lacks studies that systematically evaluate the performance of open source web vulnerability scanners.

The main objectives of this study are to assess the performance of open source scanners from multiple perspectives and to examine their detection capability.

This paper presents the results of a comparative evaluation of the security features as well as the performance of four web vulnerability detection tools.

We followed this comparative assessment with a case study in which we evaluate the level of agreement between the results reported by two open source web vulnerability scanners.

Given that the results of our comparative evaluation did not show significant performance differences among the scanners while the results of the conducted case study revealed high level of disagreement between the reports generated by different scanners, we conclude that the inconsistencies between the reports generated by different scanners might not necessarily correlate with their performance properties.

We also present some recommendations for helping developers of web vulnerabilities scanners to improve their tools’ capabilities.

نمط استشهاد جمعية علماء النفس الأمريكية (APA)

Alsaleh, Mansour& Alomar, Noura& Alshreef, Monirah& Alarifi, Abdulrahman& Al-Salman, Abdulmalik S.. 2017. Performance-Based Comparative Assessment of Open Source Web Vulnerability Scanners. Security and Communication Networks،Vol. 2017, no. 2017, pp.1-14.
https://search.emarefa.net/detail/BIM-1203027

نمط استشهاد الجمعية الأمريكية للغات الحديثة (MLA)

Alsaleh, Mansour…[et al.]. Performance-Based Comparative Assessment of Open Source Web Vulnerability Scanners. Security and Communication Networks No. 2017 (2017), pp.1-14.
https://search.emarefa.net/detail/BIM-1203027

نمط استشهاد الجمعية الطبية الأمريكية (AMA)

Alsaleh, Mansour& Alomar, Noura& Alshreef, Monirah& Alarifi, Abdulrahman& Al-Salman, Abdulmalik S.. Performance-Based Comparative Assessment of Open Source Web Vulnerability Scanners. Security and Communication Networks. 2017. Vol. 2017, no. 2017, pp.1-14.
https://search.emarefa.net/detail/BIM-1203027

نوع البيانات

مقالات

لغة النص

الإنجليزية

الملاحظات

Includes bibliographical references

رقم السجل

BIM-1203027