Open AccessA systematic review of vulnerability analysis & penetration testing tools
Author(s) -
K. Raja Sekhar,
M Pavanasurya,
Komal Bharti,
G Dhanya
Publication year - 2017
Publication title -
international journal of engineering and technology
Language(s) - English
Resource type - Journals
ISSN - 2227-524X
DOI - 10.14419/ijet.v7i1.1.9944
Subject(s) - sql injection , computer science , computer security , security bug , scripting language , cross site scripting , network packet , penetration (warfare) , vulnerability (computing) , secure coding , vulnerability assessment , network security , upgrade , packet analyzer , software , web application security , software security assurance , operating system , world wide web , information security , the internet , engineering , security service , web development , psychological resilience , query by example , psychotherapist , search engine , psychology , web search query , operations research
In Computer Security, the term vulnerability refers as a flaw in the system which creates a hole, giving an attacker a chance of taking control over the system. Any Software, Web application or anything related to computer product is vulnerable to attack in different ways like code stealing, sniffing of packets, hijacking the network, making the system compromised etc. In order to avoid such attacks a constant check has to be done and the check has to be done through various Pen testing tools. Penetration tools are one which is used to perform security check on an application to find the presence of exploitable vulnerabilities. In this paper, we look over the penetration tools like CODEPULSE (the code stealer), ETTERCAP (the Sniffer and Hijacker) and made a systematic review of various websites which are vulnerable to SQL Injection and Cross-site Scripting.