| Autor: |
A Sanjana, M. Anusha, G. Pravallika, Mrs. S. Radhika |
| Rok vydání: |
2022 |
| Předmět: |
|
| Zdroj: |
International Journal for Research in Applied Science and Engineering Technology. 10:289-292 |
| ISSN: |
2321-9653 |
| DOI: |
10.22214/ijraset.2022.45147 |
| Popis: |
REST APIs are used by the majority of modern cloud and web services. This paper explains how an attacker can take advantage of REST API flaws to gain access to a service. We introduce four new security rules that take advantage of REST API’s and then demonstrate how a stateful REST API fuzzer can be extended with active property checkers that automatically test and identify violations of these rules. Then we talk about how to implement such checkers in both ways modularly and efficiently. Using these tools, we discovered new bugs in a number of production Azure and Office365 cloud services and discussed their security implications and resolve all these issues |
| Databáze: |
OpenAIRE |
| Externí odkaz: |
|
