THAPS: Detection of Web Application Vulnerabilities

Studenteropgave: Speciale (inkl. HD afgangsprojekt)

frontpage.pdf
  • Torben Jensen
  • Heine Pedersen
4. semester, Software, Kandidat (Kandidatuddannelse)
This report presents THAPS, a vulnerability scanning tool for PHP web applications.
The tool explores two new ways of analyzing web applications by extending the traditional static analysis with a model analysis, and by combining the static analysis with a dynamic analysis.

The extended static analysis allows the tool to analyze the extensions of modular systems, such as WordPress and TYPO3, without having to analyze the core system.

The combined approach allows for analyzing custom built application with few entry points.
The problem with these types of applications is that they cannot be modeled and analyzed in bits, and they are too large to analyze in a single analysis.
Using the combination approach the tool can split the code to analyze in bits and still give results.
This also allows for analyzing newly added features to these systems as well.

The result of the project is 30 new confirmed vulnerabilities, 29 in WordPress modules and one in a core TYPO3 extension.
Additionally it has been used to identify 33 vulnerabilities in a newly established company's web application.
SprogEngelsk
Udgivelsesdato7 jun. 2012
Antal sider41
ID: 63639502