Abstract: An automated Web security analysis system and process identifies security vulnerabilities in a target Internet Web site by parsing through the target Web sit to search for a predetermined list of common security vulnerabilities. The process is recursive, exploiting information gathered throughout the process to search for additional security vulnerabilities. A prioritized list of detected security vulnerabilities is then presented to a user, including preferably a list of recommendations to eliminate the detected security vulnerabilities.
Type:
Grant
Filed:
February 7, 2006
Date of Patent:
April 3, 2007
Assignee:
S.P.I. Dynamics, Inc.
Inventors:
Dennis Wayne Hurst, Darrin Ray Barrall, Caleb Ikaki Sima