Show simple item record

dc.contributor.authorSchuckert, Felix
dc.contributor.editorMeier, Michael
dc.contributor.editorReinhardt, Delphine
dc.contributor.editorWendzel, Steffen
dc.date.accessioned2017-06-21T07:43:28Z
dc.date.available2017-06-21T07:43:28Z
dc.date.issued2016
dc.identifier.isbn978-3-88579-650-3
dc.identifier.issn1617-5468
dc.description.abstractThis paper describes a framework, which modifies existing source code to generate security issues. An example plugin for generating SQL injection in Java source code is described. The generation process is based on static code analysis techniques like dataflow analysis and abstract syntax trees. The framework is evaluated with the help of Java projects from GitHub. One modified project was successfully used in a capture the flag event as a challenge.en
dc.language.isoen
dc.publisherGesellschaft für Informatik e.V.
dc.relation.ispartofSicherheit 2016 - Sicherheit, Schutz und Zuverlässigkeit
dc.relation.ispartofseriesLecture Notes in Informatics (LNI) - Proceedings, Volume P-256
dc.titlePT: Generating security vulnerabilities in source codeen
dc.typeText/Conference Paper
dc.pubPlaceBonn
mci.reference.pages177-182
mci.conference.locationBonn
mci.conference.date5.-7. April 2016


Files in this item

Thumbnail

Show simple item record