Abstract:
The biggest challenge we face today is web security. It is the fundamental framework
for the global data society. People’s daily activities mostly depend on internet-based
applications. No web application is free from threats and security issues. Clients and
users make mistakes when interacting with web applications, which can lead to security
issues. Besides, there are coding flaws and server misconfiguration issues which gradually
lead to service failure or attacks on vulnerable information. Strong security in the web
application is a vital need for online presence nowadays. Dealing with web security issues
requires deep insight as there are a lot of tools available to detect vulnerabilities. Proper
understanding and deep analysis are required to find the proper tool for this application.
This study aims to detect vulnerabilities of the educational websites in Bangladesh and
analyze which scanning tool provides more accurate results. For our analysis, we have
used the two most prominent web application security scanners, Acunetix and Nikto.
After scanning, many security issues and vulnerabilities were found. However, the
most common vulnerability issue among all the websites was SQL injection, XSS, and
Clickjacking
Description:
Supervised by
Mr. Ashraful Alam Khan,
Assistant professor,
Co-Supervisor
Mr. S.M. Sabit Bananee,
Lecturer,
Mr. Imtiaj Ahmed Chowdhury,
Lecturer,
Department of Computer Science and Engineering(CSE),
Islamic University of Technology (IUT)
Board Bazar, Gazipur-1704, Bangladesh.
This thesis is submitted in partial fulfillment of the requirements for the degree of Bachelor of Science in Software Engineering of Computer Science and Engineering department, 2022.
