Create a tool using Python that scans a system for vulnerabilities, such as SQL injection, cross-site scripting, and insecure configurations. The tool should provide a report with recommendations for mitigation.
Added by Nicole V.
Step 1
Below is a step-by-step guide to help you build a basic vulnerability scanner. Show more…
Show all steps
Your feedback will help us improve your experience
Akash M and 91 other AP CS educators are ready to help you.
Ask a new question
Labs
Want to see this concept in action?
Explore this concept interactively to see how it behaves as you change inputs.
Key Concepts
Recommended Videos
In this lab, students will create a free account on the Cloud Security Alliance website and download a Top Threats study. Students will be asked to analyze a vulnerability, choose an appropriate control, and perform a little more research to back that selection up with facts. This lab will give students exposure to the Cloud Security Alliance top threat program. Students should go to the CSA page / Knowledge Center / Research Library (Links to an external site.) and create a free account. Sign in and open the following document: Top Threats to Cloud Computing: Deep Dive. Scroll down to the Cloudbleed vulnerability and read the one-page details. Students are to select one of these two categories - Preventative Controls or Detective Controls. Under this category, choose which control you believe to be the most effective and explain why. What to submit in your Lab Report: Vulnerability: Cloudbleed Select one - Preventative or Detective: Most Important Control and Why: Research: Do some research and try to find an example of where your chosen control could have prevented CloudBleed from being impactful.
Akash M.
Describe the network topology you found when running Nmap. Include screenshots as evidence of running Nmap. Summarize the vulnerabilities on the network and their potential implications based on your Nmap results. Describe the anomalies you found when running Wireshark, on the network capture file, and include evidence of the range of packets associated with each anomaly. Summarize the potential implications of not addressing each of the anomalies found when running Wireshark. Recommend solutions for eliminating or minimizing all identified vulnerabilities or anomalies from Wireshark and Nmap. Use current industry-respected reliable research and sources to support your recommendations.
Supreeta N.
Recommended Textbooks
Computer Science and Information Technology
Introduction to Programming Using Python
Computer Science - An Overview
Transcript
18,000,000+
Students on Numerade
Trusted by students at 8,000+ universities
Watch the video solution with this free unlock.
EMAIL
PASSWORD