A review: Penetration testing approaches on Content Management System (CMS)
These days, Content Management Systems (CMS) have been the target for adversaries in the cyber world since they are mostly open-source like Drupal, Joomla and WordPress, where no experts want to address the vulnerabilities due to them having no price tags. This paper aims to review the available and...
Saved in:
| Main Authors: | , , , |
|---|---|
| Format: | Conference or Workshop Item |
| Published: |
2021
|
| Subjects: | |
| Online Access: | http://eprints.utm.my/id/eprint/98198/ http://dx.doi.org/10.1109/ICRIIS53035.2021.9617087 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Universiti Teknologi Malaysia |
| id |
my.utm.98198 |
|---|---|
| record_format |
eprints |
| spelling |
my.utm.981982022-12-07T07:15:36Z http://eprints.utm.my/id/eprint/98198/ A review: Penetration testing approaches on Content Management System (CMS) Jagamogan, Reevan Seelen Ismail, Saiful Adli Hassan, Noor Hafizah Abas, Hafiza T Technology (General) These days, Content Management Systems (CMS) have been the target for adversaries in the cyber world since they are mostly open-source like Drupal, Joomla and WordPress, where no experts want to address the vulnerabilities due to them having no price tags. This paper aims to review the available and proposed penetration testing approaches and tools used on content management systems (CMS) and tabulate the results in a review matrix. There are 22 articles found regarding the proposed approaches and tools where some of which use machine learning (ML) algorithms. The matrix is categorized based on whether those approaches involve the use of machine learning algorithms or they involve other approaches like using basic penetration tools like Sqlmap and Metasploit to perform basic penetration tests like SQL Injection or Cross-site scripting (XSS). The penetration testing algorithms are further categorized on whether they are reinforcement learning (RL) algorithms or normal algorithms. Some of the approaches are later discussed in the third section of the paper, where they are categorized into penetration testing approaches that use reinforcement learning, the usage of basic penetration testing tools and the other proposed penetration testing tools. 2021 Conference or Workshop Item PeerReviewed Jagamogan, Reevan Seelen and Ismail, Saiful Adli and Hassan, Noor Hafizah and Abas, Hafiza (2021) A review: Penetration testing approaches on Content Management System (CMS). In: 7th International Conference on Research and Innovation in Information Systems, ICRIIS 2021, 25 - 26 October 2021, Johor Bahru, Malaysia. http://dx.doi.org/10.1109/ICRIIS53035.2021.9617087 |
| institution |
Universiti Teknologi Malaysia |
| building |
UTM Library |
| collection |
Institutional Repository |
| continent |
Asia |
| country |
Malaysia |
| content_provider |
Universiti Teknologi Malaysia |
| content_source |
UTM Institutional Repository |
| url_provider |
http://eprints.utm.my/ |
| topic |
T Technology (General) |
| spellingShingle |
T Technology (General) Jagamogan, Reevan Seelen Ismail, Saiful Adli Hassan, Noor Hafizah Abas, Hafiza A review: Penetration testing approaches on Content Management System (CMS) |
| description |
These days, Content Management Systems (CMS) have been the target for adversaries in the cyber world since they are mostly open-source like Drupal, Joomla and WordPress, where no experts want to address the vulnerabilities due to them having no price tags. This paper aims to review the available and proposed penetration testing approaches and tools used on content management systems (CMS) and tabulate the results in a review matrix. There are 22 articles found regarding the proposed approaches and tools where some of which use machine learning (ML) algorithms. The matrix is categorized based on whether those approaches involve the use of machine learning algorithms or they involve other approaches like using basic penetration tools like Sqlmap and Metasploit to perform basic penetration tests like SQL Injection or Cross-site scripting (XSS). The penetration testing algorithms are further categorized on whether they are reinforcement learning (RL) algorithms or normal algorithms. Some of the approaches are later discussed in the third section of the paper, where they are categorized into penetration testing approaches that use reinforcement learning, the usage of basic penetration testing tools and the other proposed penetration testing tools. |
| format |
Conference or Workshop Item |
| author |
Jagamogan, Reevan Seelen Ismail, Saiful Adli Hassan, Noor Hafizah Abas, Hafiza |
| author_facet |
Jagamogan, Reevan Seelen Ismail, Saiful Adli Hassan, Noor Hafizah Abas, Hafiza |
| author_sort |
Jagamogan, Reevan Seelen |
| title |
A review: Penetration testing approaches on Content Management System (CMS) |
| title_short |
A review: Penetration testing approaches on Content Management System (CMS) |
| title_full |
A review: Penetration testing approaches on Content Management System (CMS) |
| title_fullStr |
A review: Penetration testing approaches on Content Management System (CMS) |
| title_full_unstemmed |
A review: Penetration testing approaches on Content Management System (CMS) |
| title_sort |
review: penetration testing approaches on content management system (cms) |
| publishDate |
2021 |
| url |
http://eprints.utm.my/id/eprint/98198/ http://dx.doi.org/10.1109/ICRIIS53035.2021.9617087 |
| _version_ |
1752146440041267200 |