Predicting common web application vulnerabilities from input validation and sanitization code patterns

Predicting common web application vulnerabilities from input validation and sanitization code patterns

Software defect prediction studies have shown that defect predictors built from static code attributes are useful and effective. On the other hand, to mitigate the threats posed by common web application vulnerabilities, many vulnerability detection approaches have been proposed. However, finding al...

Full description

Saved in:

Bibliographic Details
Main Authors:	Shar, Lwin Khin, Tan, Hee Beng Kuan
Other Authors:	School of Electrical and Electronic Engineering
Format:	Conference or Workshop Item
Language:	English
Published:	2013
Subjects:	DRNTU::Engineering::Electrical and electronic engineering
Online Access:	https://hdl.handle.net/10356/97511 http://hdl.handle.net/10220/11832
Tags:	Add Tag No Tags, Be the first to tag this record!
Institution:	Nanyang Technological University
Language:	English

Similar Items

Predicting common web application vulnerabilities from input validation and sanitization code patterns
by: SHAR, Lwin Khin, et al.
Published: (2012)

Mining input sanitization patterns for predicting SQL injection and cross site scripting vulnerabilities
by: Shar, Lwin Khin, et al.
Published: (2013)

Mining input sanitization patterns for predicting SQL injection and cross site scripting vulnerabilities
by: SHAR, Lwin Khin, et al.
Published: (2012)

Predicting SQL injection and cross site scripting vulnerabilities through mining input sanitization patterns
by: SHAR, Lwin Khin, et al.
Published: (2013)

Automated removal of cross site scripting vulnerabilities in web applications
by: Shar, Lwin Khin, et al.
Published: (2013)

Automated removal of cross site scripting vulnerabilities in web applications
by: SHAR, Lwin Khin, et al.
Published: (2011)

Web application vulnerability prediction using hybrid program analysis and machine learning
by: SHAR, Lwin Khin, et al.
Published: (2014)

Towards a hybrid framework for detecting input manipulation vulnerabilities
by: DING, Sun, et al.
Published: (2013)

Auditing the XSS defence features implemented in web application programs
by: Shar, Lwin Khin, et al.
Published: (2013)

Auditing the XSS defence features implemented in web application programs
by: SHAR, Lwin Khin, et al.
Published: (2012)

Auditing the defense against cross site scripting in web applications
by: SHAR, Lwin Khin, et al.
Published: (2010)

JoanAudit: A tool for auditing common injection vulnerabilities
by: THOME, Julian, et al.
Published: (2017)

Mining SQL injection and cross site scripting vulnerabilities using hybrid program analysis
by: SHAR, Lwin Khin, et al.
Published: (2013)

Security slicing for auditing common injection vulnerabilities
by: THOME, Julian, et al.
Published: (2017)

Mitigating SQL injection and cross site scripting vulnerabilities using program analysis and data mining techniques
by: Shar, Lwin Khin
Published: (2013)

Semi-automated verification of defense against SQL injection in web applications
by: LIU, Kaiping, et al.
Published: (2012)

An integrated approach for effective injection vulnerability analysis of web applications through security slicing and hybrid constraint solving
by: Thome, Julian, et al.
Published: (2021)

An integrated approach for effective injection vulnerability analysis of web applications through security slicing and hybrid constraint solving
by: THOME, Julian, et al.
Published: (2018)

Defending against cross-site scripting attacks
by: Shar, Lwin Khin, et al.
Published: (2013)

Semi-automated verification of defense against SQL injection in web applications
by: Liu, Kaiping, et al.
Published: (2013)

Mining patterns of unsatisfiable constraints to detect infeasible paths
by: DING, Sun, et al.
Published: (2015)

Search-driven string constraint solving for vulnerability detection
by: THOME, Julian, et al.
Published: (2017)

Defending against cross site scripting attacks
by: SHAR, Lwin Khin, et al.
Published: (2011)

Detection of buffer overflow vulnerabilities in C/C++ with pattern based limited symbolic evaluation
by: Ding, Sun, et al.
Published: (2013)

Scalable malware clustering through coarse-grained behavior modeling
by: CHANDRAMOHAN, Mahinthan, et al.
Published: (2012)

Web vulnerabilities and countermeasures
by: Chen, Tiffany Yuhui
Published: (2014)

Defeating SQL injection
by: SHAR, Lwin Khin, et al.
Published: (2012)

Security slicing for auditing XML, XPath, and SQL injection vulnerabilities
by: THOME, Julian, et al.
Published: (2015)

Vulnerability detection on web browsers
by: Yu, Haiwan
Published: (2020)

Security analysis of permission re-delegation vulnerabilities in Android apps
by: DEMISSIE, Biniam Fisseha, et al.
Published: (2020)

Security analysis of permission re-delegation vulnerabilities in Android apps
by: DEMISSIE, Biniam Fisseha, et al.
Published: (2020)

Using CodeBERT model for vulnerability detection
by: Zhou, ZhiWei
Published: (2022)

Detection and analysis of web-based malware and vulnerability
by: Wang, Junjie
Published: (2019)

Scalable malware clustering through coarse-grained behavior modeling
by: Chandramohan, Mahinthan, et al.
Published: (2013)

Security and vulnerability analysis of web applications
by: Le, Ha Thanh
Published: (2011)

Automated recovery, maintenance and testing of input validation
by: Liu, Hui
Published: (2011)

Predicting the vulnerability to sleep deprivation
by: Nguyen, Thuy Trang.
Published: (2013)

Investigating vulnerabilities and security issues in Web Apps
by: Seah, Derek.
Published: (2009)

Tracking vulnerable people using body worn QR code
by: Goh, Khai Hong
Published: (2018)

Out of sight, out of mind? How vulnerable dependencies affect open-source projects
by: PRANA, Gede Artha Azriadi, et al.
Published: (2021)