MONTE, M. M. S.; http://lattes.cnpq.br/3016648326833142; MONTE, Maurício Marques da Silva.
Résumé:
Web applications are the main targets of cyber attacks, which is why testing to identify vulnerabilities in this type of system is essential. Performing these tests can be time consuming if done entirely manually, but there are tools that automate parts of this type of testing. Howe-ver, there is still the problem of choosing which tool to use, among the many currently available. Therefore, a case study was conducted to compare several tools that identify vulnerabilities through static analysis. Of the tools selected, the Bearer tool performed best in detecting vulnerabilities described in the OWASP Top Ten list.