Sari, Nur Maya (2024) Analisis Celah Keamanan Sistem Informasi Kemahasiswaan Fakultas Agama Islam (sikafai) Universitas Islam Riau Menggunakan Metode Penetration Testing. Other thesis, Universitas Islam Riau.

Text Nur Maya Sari.pdf - Submitted Version Restricted to Registered users only Download (7MB) | Request a copy

Abstract

Security website has become a very important point of view as the exchange of information increases website. Islamic Faculty Student Affairs Information System (SIKAFAI) is website which is used as a facility for students, lecturers, and various administrative purposes. In terms of security, there has never been testing for security gaps that would trigger an attack Cross-Site Request Forgery (CSRF), Cross Site Scripting (XSS) dan SQL Injection. The aim of this research is to test, analyze, measure and provide recommendations for vulnerabilities found based on the concept of information system security, namely Confidentiality, Integrity and Availability. The test method used in this research is Zero Entry Hacking (ZEH) with penetration testing tools such as NMAP, OWASP ZAP and other supporting tools. The results of this research are known that website SIKAFAI has 20 vulnerabilities that can be exploited. Of the 20 vulnerabilities, 8 are at risk level Medium, 6 in risk level Low and 6 on risk level Informational.

Actions (login required)

View Item