Xin Qiu MSc Dissertation 2015/16

A Test Suite for Evaluating Application Security Testing Tools

Supervised by A.Brucker

Abstract

With the rapid increase in the number of the vulnerabilities, web applications security testing tools are faced with more serious security risks. So that diversity of test cases becomes more important things already. In the open web application security project (OWASP) Top 10 risks, it is obvious that Injection, Broken Authentication, and Session Management vulnerabilities become the significant objects of that need to be detected by web application security testing tools. Therefore, this project aims to provide a detection environment for testing the reliability of security testing tools. Some test cases with flawed constructs would be created in a website by Node. js  and JavaScript .

Keyword: website, vulnerability, test case, Node. js , JavaScript