Research Of A Vulnerability Detection And Protection Technology Of The Web Application

In recent years,security incidents occur frequently due to the Web vulnerability.Web application vulnerabilities have become an increasing threat for network security.The cross site script is one of the most common Web application vulnerabilities.To be precise,the attackers could use cross-site scripting vulnerabilities to steal information,hijack session,phish and carry out other attacks.The existing Web vulnerability detection program and tools,however,still await perfection.There exists many defects that may result in low efficiency,high miss rate and false alarm rate.As a consequence,XSS vulnerability detection and defensive technology need to be further in-depth study.It has been pointed out that designing a high-performance XSS vulnerability detection system is beneficial to reduce and prevent the Web application cross-site scripting attacks,reducing the occurrence of Web security incidents.On the basis of the study and research of the using process of XSS vulnerability and the existing vulnerability detection technology,this thesis analyzes the demand of the vulnerability detection system in detail,designs and realizes a vulnerability detection system for cross-site scripting vulnerability in Web application.This detection system is created based on the existing Web vulnerability detection technology and tools,adding the function of recognizing verification code which helps to deal with the issue that the relevant data need to be permitted to submit to the server after security codes are inputted in the process of detection.In addition,this detection system could modify the problem of Web crawlers under the circumstance of the lack of Web vulnerability detection tools.In the meantime,it could construct more XSS code which can bypass the filtering of the server according to the server filtering rules for XSS.The experimental results in this dissertation demonstrate that this detection system has lower miss rate and false alarm rate,and that it has higher efficiency via improving web crawlers.By means of adding the function of recognizing verification code and constructing XSS code which can bypass the server’s filtering,the detection system have the ability to discover cross-site scripting vulnerabilities deeply and reduce the miss rate significantly.High-efficiency web crawlers,which can extract interaction points information in the page accurately,could help to improve the accuracy and efficiency of vulnerability detection.