Tools
Tools
Ahlawat, Deven (2023) Automating Security Test-cases using DevSecOps approach for AWS Serverless application with WebSockets. Masters thesis, Dublin, National College of Ireland.
Preview |
PDF (Master of Science)
Download (2MB) | Preview |
Preview |
PDF (Configuration manual)
Download (5MB) | Preview |
Abstract
This research focused on the automation of security test cases for an AWS Serverless application with WebSockets using a DevSecOps approach. The study employed the popular web scanner Burp Suite Professional, along with a custom extension and Python, to automate the testing process. The research found that automation was possible for serverless applications using this approach. Results indicated that the automation process yielded similar results to manual testing for in-scope applications and successfully identified security issues. However, the study also observed that the automation process was limited to testing a set of predefined payloads and did not address potential vulnerabilities in HTTP headers. Overall, the research demonstrated the feasibility of using a DevSecOps approach for automating security testing of serverless applications with WebSockets.
| Item Type: | Thesis (Masters) |
|---|---|
| Supervisors: | Name Email Sahni, Vikas UNSPECIFIED |
| Subjects: | Q Science > QA Mathematics > Electronic computers. Computer science T Technology > T Technology (General) > Information Technology > Electronic computers. Computer science Q Science > QA Mathematics > Computer software > Computer Security T Technology > T Technology (General) > Information Technology > Computer software > Computer Security |
| Divisions: | School of Computing > Master of Science in Cyber Security |
| Depositing User: | Tamara Malone |
| Date Deposited: | 24 Apr 2023 13:58 |
| Last Modified: | 24 Apr 2023 13:58 |
| URI: | https://norma.ncirl.ie/id/eprint/6504 |
Actions (login required)
 |
View Item |