Enhancement of Black-Box Web Application Security Scanners in Detecting XSS Injection Vulnerabilities

Abstract: Every day a new company or organization will rise and become more advanced in technology as they use the Internet for various purposes, such as e-commerce, e-banking, e-learning, and social networking, etc. By having more customers and clients visiting their web applications, they are opening their gates to malicious users. Web applications today are increasingly vulnerable due to some common factors like outdated services, misconfigured settings, hidden directories, data leaks, etc. Therefore to find these web vulnerabilities before a malicious hacker, security experts use fuzzing tools and scanners to find web vulnerabilities and security flaws in web applications. We have gathered some of the best open-source tools in this field to find vulnerabilities and security flaws. With the help of these Black-Box testing security tools, security engineers and web developers can have the chance to discover their vulnerabilities and secure their web applications without putting much time and effort.