Alhaqi, Muhammad (2024) Evaluasi Keamanan Websiste Terhadap Kerentanan Serangan Hacker Dengan Metode Penetration Test Menggunakan Owasp Zap (Studi Kasus : Sipa Fakultas Teknik). Other thesis, Universitas Islam Riau.

Text 173510022.pdf - Submitted Version Download (7MB)

Abstract

Information security is something that every website user must pay attention to in order to avoid interference or criminal acts. There are many security problems or disturbances scattered on the internet, these disturbances can be in the form of Malware attacks, exploits, database injections and so on. The information most frequently stolen is personal data (36%) and intellectual property (11%). Individuals are more likely to have their credentials and personal data stolen, at 41% and 24% respectively, requiring an evaluation of a website in an effort to protect the website from attacks or unwanted actions that could damage or steal data from the website. Evaluation of Website Security Against Vulnerability to Hacker Attacks Using the Penetration Test Method Using the Open Web Application Security Project (OWASP) ZAP in order to assist website developers in maintaining the security of the website from attacks by irresponsible external parties who misuse the data on the website. The test uses the penetration test method against several attacks that are vulnerable to eavesdropping from irresponsible users. The gaps found are XSS Injection, Absence of Anti-CSRF tokens, Missing anti-clickjacking, Cross-Domain JavaScript Source File Inclusion.

Actions (login required)

View Item