Analysis of Security Threats to Web Applications and Company Websites
The article analyzes the security threats of web applications and company websites. Two-tier and three-tier architectures of web applications are considered. An algorithm for assessing risks and searching for vulnerabilities in the web application infrastructure is presented, and the possibility of automating the testing process is noted. The most common threats to the security of web applications are identified. The main means of ensuring the security of web resources are provided.
2023: StormWall annual report on DDoS attacks [Electronic resource] // StormWall. – 2024. – URL: https://stormwall.pro/ddos-ataki-2023-otchet-za-god (date of access: 10.08.2024).
Pulko T.A., Drzhevetsky N.A., Romeiko M.Yu. Web Vulnerability Scanner «TechnoScan» // Endless light in science. – 2023. – № 9. – С. 212-218.
Shutko N.A. Theoretical concepts of protecting web applications from vulnerabilities // Bulletin of Science – 2022. – Т. 4, № 11 (56). – С. 253-269.
Software testing. Lecture 6: client-server architecture [Electronic resource] // GitBook. – URL: https://sergeygavaga.gitbooks.io/kurs-lektsii-testirovanie-programnogo-obespecheni/content/lektsiya-6-ch1-arhitektura-klient-server.html (date of access: 10.08.2024).
Web application protection: from analysis to countering attacks. Part 1 [Electronic resource] // NUBES. – 2024. – URL: https://nubes.ru/blog/articles/web-application-security-part1 (date of access: 10.08.2024).
Vybornova O.N., Ryzhikov A.N. Automated search for web application vulnerabilities based on machine learning with reinforcement // Caspian Journal: Management and High Technologies. – 2021. – № 1 (53). – С. 91-97. – DOI: 10.21672/2074-1707.2021.53.1.091-097
Putyato M.M. Analysis of typical vulnerabilities when building web applications / M.M. Putyato, A.S. Makaryan, V.V. Leshchenko, V.O. Nemchinova // Bulletin of the Adygea State University. Series: Natural, mathematical and technical sciences. – 2022. – № 3 (306). – С. 77-85. – DOI: 10.53598/2410-3225-2022-3-306-77-85
Loginova N.V. Methods for detecting and preventing vulnerabilities in front-end development // Bulletin of Science and Education. – 2024. – № 2-1 (145). – С. 17-26.
Web application security: analysis of methods of protection against attacks at the Backend level [Electronic resource] // Habr. – 2024. – URL: https://habr.com/ru/articles/800017/ (date of access: 10.08.2024).
Ozhiganova M.I., Kurtametov E.S. Application of machine learning in protecting web applications // NBI technologies. – 2020. – Т. 14, № 2. – С. 16-20. – DOI: 10.15688/NBIT.jvolsu.2020.2.3
Krylov I.D. Determination of information security risks such as bypassing the Web Application Firewall / I.D. Krylov, I.V. Kicha, D.P. Yakovlev, A.A. Zhdanov, D.K. Shulga, I.O. Elfimov, G.V. Belikov, V.A. Selishchev // News of Tula State University. Engineering Sciences. – 2023. – № 8. – С. 305-309. – DOI: 10.24412/2071-6168-2023-8-305-306
12. Dovgal V.A., Sheredko D.I. Ensuring information security of a website in conditions of import substitution // Bulletin of the Adygea State University. Series: Natural, mathematical and technical sciences. – 2022. – № 2 (301). – С. 67-77. – DOI: 10.53598/2410-3225-2022-2-301-67-77
Web application protection: from analysis to countering attacks. Part 2 [Electronic resource]// NUBES. – 2024. – URL: https://nubes.ru/blog/articles/web-application-security-part2 (Date of access: 10.08.2024).
Copyright (c) 2025 International Journal of Engineering and Computer Science
This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.