Alexandre Vernotte

Learn More
—This paper deals with an original approach to automate Model-Based Vulnerability Testing (MBVT) for Web applications, which aims at improving the accuracy and precision of vulnerability testing. Today, Model-Based Testing techniques are mostly used to address functional features. The adaptation of such techniques for vulnerability testing defines novel(More)
Cross-Site Scripting (XSS) vulnerability is one of the most critical breaches that may compromise the security of Web applications. Reflected XSS is usually easy to detect as the attack vector is immediately executed, and classical Web application scanners are commonly efficient to detect it. However, they are less efficient to discover multi-step XSS,(More)
RÉSUMÉ. Cet article concerne la génération automatique de tests de vulnérabilité à partir de mo-dèles pour applications Web. Les technologies de génération de tests à partir de modèles sont aujourd'hui principalement mises en oeuvre dans le contexte du test fonctionnel. L'application de ces techniques au test de vulnérabilité sur applications Web en(More)
  • 1