ISBN: 978-981-18-3959-7 DOI: 10.18178/wcse.2022.06.048
Design and Implementation of WAF Bypass Web Vulnerability Detection System
Abstract— Nowadays, with more and more web applications, the phenomenon of bypassing WAF attacks on networks has only increased, which has made the situation of Internet security more and more serious. This article first provides a background on common web vulnerabilities. Secondly, the overall architecture and overall functional design of the system are proposed, and then the modules of the functional design are introduced, mainly including the design of information collection, vulnerability detection, and the design of generating reports. Next, the key technologies used by the system are introduced. Finally, the system is tested, and the test results show that the system can successfully bypass WAF to detect web vulnerabilities.
Index Terms—web vulnerability detection, bypassing WAF, internet security, fuzzing technology
Zengyu Cai
School of Computer and Communication Engineering, Zhengzhou University of Light Industry, Zhengzhou, 450002, CHINA
Henan Key Laboratory of Food Safety Data Intelligence, Zhengzhou, 450002, CHINA
Mengya Zhang
Software Engineering College, Zhengzhou University of Light Industry, Zhengzhou, 450002, CHINA
Henan Key Laboratory of Food Safety Data Intelligence, Zhengzhou, 450002, CHINA
Zi’an Wang
School of Computer and Communication Engineering, Zhengzhou University of Light Industry, Zhengzhou, 450002, CHINA
Jianwei Zhang
Software Engineering College, Zhengzhou University of Light Industry, Zhengzhou, 450002, CHINA
Henan Key Laboratory of Food Safety Data Intelligence, Zhengzhou, 450002, CHINA
Yuan Feng
School of Computer and Communication Engineering, Zhengzhou University of Light Industry, Zhengzhou, 450002, CHINA
Henan Key Laboratory of Food Safety Data Intelligence, Zhengzhou, 450002, CHINA
Nan Jiang
School of Computer and Communication Engineering, Zhengzhou University of Light Industry, Zhengzhou, 450002, CHINA
Cite:Zengyu Cai, Mengya Zhang, Zi’an Wang, Jianwei Zhang, Yuan Fen, Nan Jiang, "Design and Implementation of WAF Bypass Web Vulnerability Detection System, " Proceedings of 2022 the 12th International Workshop on Computer Science and Engineering (WCSE 2022), pp. 333-339, June 24-27, 2022.