Search for collections on Repository Universitas Islam Riau

+ Advanced search

Analisis Dan Implementasi Penetrasi Testing Dalam Mendeteksi Serangan Distributed Denial Of Service (ddos) Pada Website (studi Kasus : Spada Fakultas Teknik Universitas Islam Riau)

Erlin, T.a.hidayatul (2024) Analisis Dan Implementasi Penetrasi Testing Dalam Mendeteksi Serangan Distributed Denial Of Service (ddos) Pada Website (studi Kasus : Spada Fakultas Teknik Universitas Islam Riau). Other thesis, Universitas Islam Riau.

[thumbnail of T.a.hidayatul Erlin.pdf] Text
T.a.hidayatul Erlin.pdf - Submitted Version
Restricted to Registered users only
Download (5MB) | Request a copy

Abstract

The development of Information Technology has brought great benefits in supporting the operations of various entities, including educational institutions such as the Islamic University of Riau. However, security threats, particularly Distributed Denial of Service (DDoS) attacks, pose significant challenges that can result in financial and reputational harm. This study aims to measure the level of vulnerability of the SPADA website of the Faculty of Engineering, Riau Islamic University to DDoS attacks and conduct periodic penetration testing to check for vulnerabilities. The method used in this study is a digital forensic investigation that combines information and digital evidence for review materials. The steps include information gathering, vulnerability checking using OWASP ZAP, checking domain connections with Sudomy, and capturing data traffic using Wireshark. This study only focused on DDoS attacks and did not address other types of attacks. The results showed that the SPADA website of the Faculty of Engineering uir has 10 major vulnerabilities that can be exploited by DDoS attacks, including the lack of a Content Security Policy (CSP), anti-clickjacking security headers, and Secure flags on cookies. Testing using the OWASP ZAP, Sudomy, and Wireshark tools revealed that websites are still vulnerable to DDoS attacks that can cause downtime and service disruptions. The conclusion of this study is that periodic penetration testing is needed to detect and overcome vulnerabilities on the SPADA website of the Faculty of Engineering UIR. The implementation of appropriate security solutions, such as the implementation of security headers and monitoring of network traffic, is essential to increase the resilience of the system to DDoS attacks and ensure the availability of services to users.

Item Type: Thesis (Other)
Contributors:
Contribution
Contributors
NIDN/NIDK
Sponsor
Siswanto, Apri
1016048502
Uncontrolled Keywords: DDoS, penetrasi testing, keamanan web.
Subjects: T Technology > T Technology (General)
Divisions: > Teknik Informatika
Depositing User: Yolla Afrina Afrina
Date Deposited: 18 Nov 2025 07:29
Last Modified: 18 Nov 2025 07:29
URI: https://repository.uir.ac.id/id/eprint/30491

Actions (login required)

View Item View Item