Warning: main(): It is not safe to rely on the system's timezone settings. You are *required* to use the date.timezone setting or the date_default_timezone_set() function. In case you used any of those methods and you are still getting this warning, you most likely misspelled the timezone identifier. We selected the timezone 'UTC' for now, but please set date.timezone to select your timezone. in /home/httpd/groups/navigators/navigators-web/w2/extensions/LdapAuthentication/LdapAuthentication.php on line 70

Strict Standards: Declaration of LdapAuthenticationPlugin::modifyUITemplate() should be compatible with AuthPlugin::modifyUITemplate(&$template, &$type) in /home/httpd/groups/navigators/navigators-web/w2/extensions/LdapAuthentication/LdapAuthentication.php on line 70

Warning: main(): It is not safe to rely on the system's timezone settings. You are *required* to use the date.timezone setting or the date_default_timezone_set() function. In case you used any of those methods and you are still getting this warning, you most likely misspelled the timezone identifier. We selected the timezone 'UTC' for now, but please set date.timezone to select your timezone. in /home/httpd/groups/navigators/navigators-web/w2/extensions/LdapAuthentication/LdapAuthentication.php on line 70

Strict Standards: Declaration of LdapAuthenticationPlugin::setPassword() should be compatible with AuthPlugin::setPassword($user, $password) in /home/httpd/groups/navigators/navigators-web/w2/extensions/LdapAuthentication/LdapAuthentication.php on line 70

Warning: main(): It is not safe to rely on the system's timezone settings. You are *required* to use the date.timezone setting or the date_default_timezone_set() function. In case you used any of those methods and you are still getting this warning, you most likely misspelled the timezone identifier. We selected the timezone 'UTC' for now, but please set date.timezone to select your timezone. in /home/httpd/groups/navigators/navigators-web/w2/extensions/LdapAuthentication/LdapAuthentication.php on line 70

Strict Standards: Declaration of LdapAuthenticationPlugin::addUser() should be compatible with AuthPlugin::addUser($user, $password, $email = '', $realname = '') in /home/httpd/groups/navigators/navigators-web/w2/extensions/LdapAuthentication/LdapAuthentication.php on line 70

Warning: main(): It is not safe to rely on the system's timezone settings. You are *required* to use the date.timezone setting or the date_default_timezone_set() function. In case you used any of those methods and you are still getting this warning, you most likely misspelled the timezone identifier. We selected the timezone 'UTC' for now, but please set date.timezone to select your timezone. in /home/httpd/groups/navigators/navigators-web/w2/extensions/LdapAuthentication/LdapAuthentication.php on line 70

Strict Standards: Declaration of LdapAuthenticationPlugin::initUser() should be compatible with AuthPlugin::initUser(&$user, $autocreate = false) in /home/httpd/groups/navigators/navigators-web/w2/extensions/LdapAuthentication/LdapAuthentication.php on line 70

Warning: preg_match(): Compilation failed: group name must start with a non-digit at offset 8 in /home/httpd/groups/navigators/navigators-web/w2/includes/MagicWord.php on line 722

Warning: preg_match(): Compilation failed: group name must start with a non-digit at offset 8 in /home/httpd/groups/navigators/navigators-web/w2/includes/MagicWord.php on line 722

Warning: preg_match(): Compilation failed: group name must start with a non-digit at offset 8 in /home/httpd/groups/navigators/navigators-web/w2/includes/MagicWord.php on line 722

Warning: preg_match(): Compilation failed: group name must start with a non-digit at offset 8 in /home/httpd/groups/navigators/navigators-web/w2/includes/MagicWord.php on line 722

Warning: preg_match(): Compilation failed: group name must start with a non-digit at offset 8 in /home/httpd/groups/navigators/navigators-web/w2/includes/MagicWord.php on line 722

Warning: preg_match(): Compilation failed: group name must start with a non-digit at offset 8 in /home/httpd/groups/navigators/navigators-web/w2/includes/MagicWord.php on line 722

Warning: preg_match(): Compilation failed: group name must start with a non-digit at offset 8 in /home/httpd/groups/navigators/navigators-web/w2/includes/MagicWord.php on line 722

Warning: preg_match(): Compilation failed: group name must start with a non-digit at offset 8 in /home/httpd/groups/navigators/navigators-web/w2/includes/MagicWord.php on line 722

Warning: preg_match(): Compilation failed: group name must start with a non-digit at offset 8 in /home/httpd/groups/navigators/navigators-web/w2/includes/MagicWord.php on line 722
Browse wiki - Navigators

Browse wiki

From Navigators

Jump to: navigation, search
Publication:DSNa 2016
Abstract Although security starts to be taken into Although security starts to be taken into account during software development, the tendency for source code to contain vulnerabilities persists. Open source static analysis tools provide a sensible approach to mitigate this problem. However, these tools are programmed to detect a specific set of vulnerabilities and they are often difficult to extend to detect new ones. WAP is a recent popular open source tool that detects vulnerabilities in the source code of web applications written in PHP. The paper addresses the difficulty of extending these tools by proposing a modular and extensible version of the WAP tool, equipping it with “weapons” to detect (and correct) new vulnerability classes. The new version of the tool was evaluated with seven new vulnerability classes using web applications and plugins of the widely-adopted WordPress content management system. The experimental results show that this extensibility allows WAP to find many new (zeroday) vulnerabilities. o find many new (zeroday) vulnerabilities.
Author Ibéria Medeiros + , Nuno Ferreira Neves + , Miguel Correia +
Booktitle Proceedings of the International Conference on Dependable Systems and Networks (DSN)  +
Document Document for Publication-DSNa 2016.pdf +
Key DSNa 2016  +
Month jun  +
NumPubDate 2,016.06  +
Project Project:SEGRID +
ResearchLine Fault and Intrusion Tolerance in Open Distributed Systems (FIT) +
Title Equipping WAP with Weapons to Detect Vulnerabilities  +
Type inproceedings  +
Year 2016  +
Has improper value forThis property is a special property in this wiki. Url  +
Categories Publication  +
Modification dateThis property is a special property in this wiki. 5 June 2016 08:03:06  +
hide properties that link here 
  No properties link to this page.
 

 

Enter the name of the page to start browsing from.
Views
Personal tools
Toolbox
Navigators toolbox