Static analysis for detecting taint-style vulnerabilities in web applications.

Nenad Jovanovic Christopher Kruegel Engin Kirda

Published in: J. Comput. Secur. (2010)

Keyphrases

web applications
static analysis
dynamic analysis
source code
application development
buffer overflow
end users
web services
web browser
information security
regular expressions
web application development
mashup
security vulnerabilities
high level
test suite
data model