NORMA eResearch @NCI Library

Limiting Attack Surface for Infrastructure Applications using Custom YAML Templates in Nuclei Automation

Solanki, Hardik Vinod (2023) Limiting Attack Surface for Infrastructure Applications using Custom YAML Templates in Nuclei Automation. Masters thesis, Dublin, National College of Ireland.

[thumbnail of Master of Science]
PDF (Master of Science)
Download (1MB) | Preview
[thumbnail of Configuration manual]
PDF (Configuration manual)
Download (2MB) | Preview


With the growing connectivity of information systems around the world, as well as the accessibility of data resources, the Integrity and Confidentiality of Data and Services is also under threat. In order to reduce security risks, organizations use Vulnerability Assessment (VA), a technique for evaluating security threats. This condition can be achieved by automating and managing vulnerabilities with customized defined YAML templates. In this research, by developing a customized YAML template that includes all publicly available latest vulnerabilities including Zero Day attack related to Infrastructure applications and integrate into "Nuclei" Automated YAML based Scanner which is "Open source-A Community Powered Vulnerability Scanner" (Built by the Project Discovery Team). Furthermore, it has been used to run the "Nuclei" automated scanner on working infrastructure application for Vulnerability Assessment & Managing security Testing approach based on defined vulnerabilities in YAML templates which is developed in this research. Overall, this paper improves knowledge of security automation based on customized end points and assists in preventing, limiting attack surface, and monitoring Vulnerabilities Assessment (VA) without producing any false-positive results before any exploit happens in the Internal/External Infrastructure Applications.

Item Type: Thesis (Masters)
Sahni, Vikas
Uncontrolled Keywords: Vulnerability Assessment; Vulnerability Management; Threats; Attack Surface; Security Audit; YAML Templates, Nuclei Automation Scanner; Automated Vulnerability scanning; Infrastructure Security
Subjects: Q Science > QA Mathematics > Electronic computers. Computer science
T Technology > T Technology (General) > Information Technology > Electronic computers. Computer science
Q Science > QA Mathematics > Computer software > Computer Security
T Technology > T Technology (General) > Information Technology > Computer software > Computer Security
Divisions: School of Computing > Master of Science in Cyber Security
Depositing User: Tamara Malone
Date Deposited: 05 May 2023 12:09
Last Modified: 05 May 2023 12:09

Actions (login required)

View Item View Item