Automated Black Box Detection of HTTP GET Request-based Access Control Vulnerabilities in Web Applications.
Malte KushnirOlivier FavreMarc RennhardDamiano EspositoValentin ZahndPublished in: ICISSP (2021)
Keyphrases
- software engineering
- web applications
- black box
- black boxes
- application development
- software systems
- application developers
- web application development
- white box
- end users
- web services
- anomaly detection
- web browser
- test cases
- website
- database
- integration testing
- white box testing
- information security
- test set
- dynamic content
- expert systems
- database systems