Website Vulnerabilities Scanner

The main goal of this bachelor thesis is to present a new analyzing tool for the main four web application vulnerabilities, which are mainly SQL Injection, Cross-Site Scripting (XSS), Buffer Overflow, Denial of Services. To a

Project Title

Website Vulnerabilities Scanner

Project Area of Specialization

Computer Science

Project Summary

The main goal of this bachelor thesis is to present a new analyzing tool for the main four web application vulnerabilities, which are mainly SQL Injection, Cross-Site Scripting (XSS), Buffer Overflow, Denial of Services.

To achieve this goal, dynamically generate test requests that are applied specifically to a given web application will be applied by the analysis tool.

By doing this analysis, our scanning will be able to detect vulnerabilities of web application regardless of if it is for a known web application or custom web application.

The analysis tool will conduct four tests, these tests will identify the common web application vulnerabilities that are SQL Injections, Cross-Site Scripting (XSS), Buffer Overflow, and Denial of Services.

Three tests will be applied on web applications input parameters so the tests will be parameter-based tests and DOS attacks will be applied on servers where the website is located.

Project Objectives

Due to increasing competition and lack of jobs in the industry, it is apparent that students must gain skills and should be experts in their field of studies if they hope to get employed. Here is a list of important academic objectives we hope to achieve by the end of this project:

• The main objective of the project is to gain skills in the field of Web Application Development, Accessibility in Web Applications, Python, JavaScript, Node.js, Database Design, Networking, and Compilers. The participants should also learn UI/UX design with Figma to design web applications that provide an excellent user experience and are accessible to everyone. The team should not only know the basics of these fields but also have a depth understanding of the subject matter.
• Based on the skills gained in this project, the participants should be ready to work on industry-level projects.
• The participants should learn to do organized work and meet the given deadlines. They should learn to be responsible and punctual.
• The participants should learn to work in teams and collaborate. They should learn the concept of version control and be able to use tools like git, GitHub, Trello, Asana, etc.
• The students should learn to focus on their work and be able to participate in a competitive, challenging, and politics-free environment.
• The participating students should learn to properly document their progress. Documentation is the most important part of any project. Poor documentation can reflect badly on the developer's image and lead to miscommunication, and ultimately failure of the project.

At the end of the day, the entire team should give their best to complete the project before time and prove their skills, because this is the goal of the project. They should reflect on their mistakes so far, accept them, and try to not repeat them in the future.

Project Implementation Method

The project will be completed following the agile methodology. Our highest priority will be the early and continuous delivery of the usable software while at the same time welcoming changing requirements even at the later stage of development. We will focus on delivering working software frequently in the sprints of 1 week to 10 days. A 15-minute scrum will be held each day in which each team member will explain what they did the previous day, what are they working today and possible tasks for tomorrow. Any blockers or dependencies will also be discussed during this session.

Effective communication will be maintained throughout the project using Trello as a project management software and face to face communication either in person or remote video conferencing tools like Zoom or Google Meet. The primary measure of the project will be the working software. Using this approach, the team should be able to maintain a constant pace indefinitely. At regular intervals of about 2 weeks, team will reflect on the progress of the previous sprint to ponder upon the technical challenges faced during the previous sprints and find out ways to improve the overall progress.

Benefits of the Project

Direct Customers/Beneficiaries of the Project:

The scanning process includes detecting and classifying system weaknesses in networks, communications equipment, and computers. In addition to identifying security holes, the vulnerability scans also predict how effective countermeasures are in case of a threat or attack.

Outputs Expected from the Project:

This software automates the manual Scanning process. We believe that once the organization chooses to use this system, it will eventually recognize the value and necessity of this system and understand the problems involved in the manual process. The main features of this system will be

• Creating report and find various types of vulnerabilities,
• Generates a report of whole scanned websites
• Process initiation,
• Storing Scanning data,

Technical Details of Final Deliverable

This software automates the manual Scanning process. We believe that once the organization chooses to use this system, it will eventually recognize the value and necessity of this system and understand the problems involved in the manual process. The main features of this system will be

• Creating report and find various types of vulnerabilities,
• Generates a report of whole scanned websites.
• Process initiation,
• Storing Scanning data,

Final Deliverable of the Project

Software System

Core Industry

Security

Other Industries

Core Technology

Others

Other Technologies

Internet of Things (IoT)

Sustainable Development Goals

Quality Education, Decent Work and Economic Growth, Partnerships to achieve the Goal

Required Resources

If you need this project, please contact me on contact@adikhanofficial.com