Penetration Testing for the Cloud-Based Web Application

Authors: ,

Abstract: This paper discusses methods, tools, approaches, and techniques used for the penetration testing on the cloud-based web application on Amazon AWS platform. The findings of a penetration test could be used to fix weaknesses and vulnerabilities, and significantly improve security. The testing is implemented by undertaking a malicious attack aiming to breach system networks and thereby confirm the presence of cloud infrastructure. The research focuses on cloud-based web applications' high-risk vulnerabilities such as unrestricted file upload, command injection, and cross-site scripting. The outcomes expose and approved some vulnerabilities, flaws, and mistakes in the utilised cloud based web application. It is concluded that some vulnerabilities haveto be considered before architecting the cloud system. Recommendations are proposing solutions to testing results.

WSEAS Transactions on Computers, ISSN / E-ISSN: 1109-2750 / 2224-2872, Volume 22, 2023, Art. #13

PDF
• HTML
DOI
XML
Cite
×
Citation Tools
WSEAS AMA
Rafid Al-Khannak, Sajjan Singh Nehal, "Penetration Testing for the Cloud-Based Web Application," WSEAS Transactions on Computers, vol. 22, pp. 104-113, 2023, DOI:10.37394/23205.2023.22.13
Rafid Al-Khannak, Sajjan Singh Nehal. Penetration Testing for the Cloud-Based Web Application. WSEAS Transactions on Computers. 2023;22:104-113. 10.37394/23205.2023.22.13
Copy to Clipboard
Citation copied to Clipboard

Certification

---