04.1 - Graduação (UAG)
URI permanente desta comunidadehttps://arandu.ufrpe.br/handle/123456789/2948
Navegar
1 resultados
Resultados da Pesquisa
Item Análise das técnicas de segurança do framework laravel contra ataques as aplicações web(2019-07-11) Pacheco, Felipe Guimarães; Vanderlei, Igor Medeiros; http://lattes.cnpq.br/7448139435512224Web applications are increasingly present in our daily lives, helping us in various tasks, such as banking transactions, shopping sites, business systems, social networks, among others. A good part of these applications store and process data provided by the customer, where they are often confidential and need protection. To streamline the application development delivery process, many developers choose to make use of frameworks in designing the features of their projects. As a result, information security is not prioritized, and may cause future problems, such as attacks on web applications. Attacks on web applications are commonplace among crackers, given that these applications are not limited to an organization’s internal attacks alone, but to any user who access the internet. In the light of this, this work was developed that addresses an exploratory research aiming to present the integrated security techniques to the Laravel framework, analyzing each vulnerability by performing con-tra tests each using penetration tools and checking the resources present in the framework. The ten vulnerabilities listed by OWASP Top Ten, one of the data security projects developed by OWASP (Open Web Application Security Project) and aims to present the ten vulnerabilities of Internet applications that can cause more damage to systems on the Internet. Throughout the experiments, it is possible to illustrate to which vulnerabilities Laravel has defense mechanisms and how developers can use them to protect user data and against which vulnerabilities the organization does not have resources against external attacks.