Fikri, Muhammad Afiq (2023) Analisis Keamanan Sistem Informasi Akademik (sikad) Universitas Islam Riau Dengan Metode National Institute Of Standards And Technology (nist 800-115). Other thesis, Universitas Islam Riau.

Text Muhammad Afiq Fikri.pdf - Submitted Version Restricted to Registered users only Download (3MB) | Request a copy

Abstract

Currently, there is a lot of crime in the internet world which requires monitoring and detection of website security so that it can be anticipated quickly. This effort is useful for finding a risk of vulnerability so that you can get the right strategy to reduce or eliminate that risk. Penetration testing will be carried out on an Academic Information System (SIKAD) website at Riau Islamic University. This penetration testing uses SQL Injection and Cross Site Scripting (XSS) techniques to find security gaps in a website. SQL Injection and Cross Site Scripting (XSS) are hacking techniques that are often used by hackers. This technique can find out the contents in the database by inserting a script on the website. Therefore, website analysis was carried out using the NIST 800-115 method and vulnerability testing using Owasp ZAP. The results of this analysis and testing will be applied in reporting which is expected to help the Riau Islamic University Academic Information System (SIKAD) to manage and improve the website

Actions (login required)

View Item