Article Per Year (5 Year)
p-Index From 2019 - 2024
0.23
P-Index
This Author published in this journals
All Journal Jurnal Ilmiah Merpati (Menara Penelitian Akademika Teknologi Informasi)
Reyhan Todo Noer Yamin
Universitas Udayana
Computer Science & IT

Published : 1 Documents Claim Missing Document
Claim Missing Document
Check
Articles

Found 1 Documents
Search

 1 
Penetration Testing on the SISAKTI Application at Udayana University Using the OWASP Testing Guide Version 4 Reyhan Todo Noer Yamin; I Made Agus Dwi Suarjaya; I Putu Agus Eka Pratama
Jurnal Ilmiah Merpati (Menara Penelitian Akademika Teknologi Informasi) Vol 10 No 3 (2022): Vol. 10, No. 3, December 2022
Publisher : Lembaga Penelitian dan Pengabdian kepada Masyarakat Universitas Udayana

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.24843/JIM.2022.v10.i03.p04

Abstract

SISAKTI application is an information system to facilitate online administration of Udayana University student participation credit units. Until now, there has been no security testing carried out on the SISAKTI application, therefore this study aimed to test the security of SISAKTI application using Black Box penetration testing technique, conduct an assessment of system vulnerabilities and provide recommendations for improvements. The method used is by following the guidelines from OWASP Testing Guide version 4 using Information Gathering, Input Validation Testing, and Authorization Testing modules. From these three modules, there were 28 sub-tests that were successfully carried out, the results were 15 positive tests, 6 negative tests, and 7 tests which cannot be done, from the 28 sub-tests there are 8 vulnerabilities that have a direct effect on the system and are assessed using CVSS calculator, the results are 6 vulnerabilities have a vulnerable value from 6.4 (Medium) to 9.9 (Critical).
Co-Authors I Made Agus Dwi Suarjaya I Putu Agus Eka Pratama