Security testing and Vulnerability Analysis -- 2

Đã Đóng Đã đăng vào 2 tháng trước Thanh toán khi bàn giao
Đã Đóng Thanh toán khi bàn giao

Task 1. Security Testing and Vulnerability Analysis

For this task, you should use the ZAP project to conduct automated and manual security testing of

the project. Describe in detail the steps of your testing and discuss the outcomes of the testing

results. You may discuss whether a testing approach is more effective and what you have done to

enhance the number and/or the accuracy of the detected vulnerabilities.

You are required to analyze 3 potential security vulnerabilities. The 3 vulnerabilities you identify

should be of 3 different classes, and you should classify them using 3 distinct CWE codes. Higher

marks will be given to vulnerabilities that cover a broader range or are very different in nature.

For each of the vulnerabilities, you should write a short report discussing the following:

• How the vulnerability was detected, e.g., through one method or a combination of multiple


• A description of the vulnerability, including

o typical example(s) of the vulnerability with explanations,

o how the vulnerability may be exploited, e.g., example inputs from malicious users that

can trigger the attack, and

o consequences of the vulnerability being exploited.

• A justification of why the vulnerability you identified in the project is indeed a security

vulnerability corresponding to the CWE classification. You may achieve this by one or more of

the following:

o Verify the vulnerability by trying to exploit it and describe in detail what action you


o Perform a code review to identify the source code instance, describe where it appears

in the project, and provide the code snippets.

o Conduct some research and cite references to support your claims.

• A recommendation of remediation that would fix the vulnerability or a discussion on why

remediation is challenging. Ideally, a fix is provided specific to the project, e.g., by revising the

source code.

You should not write more than 2 pages for each vulnerability and use an appendix if necessary. The

report format for each vulnerability should contain the following headings.

• Name:

• CWE Code:

• Detection:

• Description:

o Examples:

o Exploitation:

o Impact:

• Justification:

o Verification (optional):

o Code Source (optional):

o Supporting Data (optional):

• Remediation:

An ninh Web An ninh máy tính Viết kĩ thuật Research Writing Bảo mật Internet

ID dự án: #37257050

Về dự án

15 đề xuất Dự án từ xa 1 tháng trước đang mở

15 freelancer chào giá trung bình$45 cho công việc này


Security testing and Vulnerability Analysis -- 2 I am a Professional writer with 4 years of experience. I assure you I will do my upmost best to meet your requirements. I've written over 500 projects in the last 2 mo Thêm

$10 AUD trong 1 ngày
(65 Nhận xét)

I am an ethical hacker. I have extensive experience using the OWASP Zap application to pentest applications and frameworks. I can find and rate vulnerabilities. I have done similar exercises many times before as well. Thêm

$49 AUD trong 1 ngày
(7 Nhận xét)

Hello, I can help you with the Security texting and Vulnerability analysis and reporting. Kindly text me over the chats we discuss further. Thank you

$120 AUD trong 2 ngày
(4 Nhận xét)

Hello, My name is Fahim and I'm a certified ethical hacker (CEH) and professional penetration tester. I specialize in web application penetration testing, Android application pentesting, network penetration testing an Thêm

$50 AUD trong 7 ngày
(3 Nhận xét)

Hello, My expertise lies in Vulnerability Assessment/Management and Penetration Testing. I have conducted more than 200 PT assignments related to Infra and Web. Hands-on experience in generating VA & PT reports as p Thêm

$70 AUD trong 5 ngày
(0 Nhận xét)

Hi there! My name is Narendra and I'm a professional with extensive experience in developing web applications. From my experience, I have learned how to use several technologies such as PHP, Python, Django, Node JS, Re Thêm

$30 AUD trong 7 ngày
(0 Nhận xét)

Dear Client, When it comes to your project, I am expert. I will provide you with 100% satisfaction with work and full service. It would be great if you hire me. Based on your feedback, I can draft my proposal accur Thêm

$50 AUD trong 2 ngày
(0 Nhận xét)

Dear Client. Welcome to my profile, Home to Professional and Quality services with 100% customer satisfaction guarantee. I'm a Certified & Experienced Expert in the respective project requirements. Dear Client, I take Thêm

$50 AUD trong 1 ngày
(0 Nhận xét)

Hello Dear, We are a Team and experienced penetration tester with a proven track record in identifying and mitigating security vulnerabilities. Our expertise can help safeguard your systems effectively and efficiently Thêm

$40 AUD trong 2 ngày
(0 Nhận xét)

I am a seasoned IT Security professional with more than 10 years experience in this field, having worked more than 30 years in the IT industry. I pride myself in the quality of the work given, always striving to better Thêm

$30 AUD trong 7 ngày
(0 Nhận xét)

Hello there I am part of the team at Hackstop. We specialize in comprehensive security testing, which includes API Security Testing, Vulnerability Assessment and Penetration Testing (VAPT), Mobile Application Penetrati Thêm

$30 AUD trong 7 ngày
(0 Nhận xét)