A new architecture of Ajax web application security crawler with finite-state machine
Proceedings - 2014 International Conference on Cyber-Enabled Distributed Computing and Knowledge Discovery, CyberC 2014(2014)
摘要
As Ajax webpage can be built by Javascript function, Ajax makes it possible to send asynchronous requests to the server and handle the response in the background. It is not definite that the current URL reflects the current state of the webpage. The traditional approach of security crawler can not walk through the Ajax web application to collect all the interface information for web security testing. In this page, we will introduce several benefits of Ajax web application and some technical differences about the crawler and propose a new model based on finite-state machine with double filter strategy to make it possible for Ajax web application security test automatically. Additionally, the crawler will be highly compatible with the metaspolit framework. © 2014 IEEE.
更多查看译文
关键词
,ajax web application, crawler of security scanner, finite-state machine, double duplicate elimination strategy
AI 理解论文
溯源树
样例
生成溯源树,研究论文发展脉络