APPLICATION SECURITY TESTING
First Claim
Patent Images
1. A processor-readable medium storing code representing instructions that when executed at a processor cause the processor to:
- identify an interface mapping of an application hosted at an application server;
generate an interface description of the application based on the interface mapping; and
provide the interface description to a scanner.
8 Assignments
0 Petitions
Accused Products
Abstract
In one implementation, an attack surface identification system defines an interface description of an application during execution of the application. The interface description is then provided to a scanner.
286 Citations
20 Claims
-
1. A processor-readable medium storing code representing instructions that when executed at a processor cause the processor to:
-
identify an interface mapping of an application hosted at an application server; generate an interface description of the application based on the interface mapping; and provide the interface description to a scanner. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A processor-readable medium storing code representing instructions that when executed at a processor cause the processor to:
-
determine a context path of the application; identify a plurality of resources of the application, each resource from the plurality of resources having a filesystem path; define an interface description for the application including a plurality of uniform resource identifiers, each uniform resource identifier based on the context path and the filesystem path of a resource from the plurality of resources; and provide the interface description to a scanner via a communications channel between the scanner and the application. - View Dependent Claims (12, 13, 14, 15)
-
-
16. An attack surface identification system, comprising:
-
a recognition module to identify a first framework of a first application hosted at an application server and a second framework of a second application hosted at the application server, the second framework different from the first framework; a first identification module to identify RESTful interfaces at the first application; a second identification module to identify RESTful interfaces at the second application; and a description module to define a first interface description for the first application and a second interface description for the second interface description. - View Dependent Claims (17, 18, 19, 20)
-
Specification