2019 11th International Conference on Measuring Technology and Mechatronics Automation (ICMTMA) | 2019
Design and Implementation of Core Modules of WEB Application Vulnerability Detection Model
Abstract
In view of the shortcomings of existing vulnerability detection tools, an efficient Web application vulnerability detection system model based on crawler and feature recognition is proposed in this paper. The model is optimized from two aspects: scanning information collection and vulnerability detection efficiency. The network crawler module proposes a multi-threaded crawler mechanism based on breadth-first strategy. It extracts and scans a large number of duplicate and useless links through Hash Table duplicate checking, URL duplicate checking and parameter duplicate links, to improve the efficiency of scanning information collection and detection. The feature recognition module reduces the large amount of information exchange process needed to scan the website through two phases, namely, the identification of known websites and the screening of test objects based on VSM, which improves the scanning efficiency and reduces the false alarm rate to a certain extent.