×

Detecting and monitoring server side states during web application scanning

  • US 8,676,966 B2
  • Filed: 12/28/2009
  • Issued: 03/18/2014
  • Est. Priority Date: 12/28/2009
  • Status: Active Grant
First Claim
Patent Images

1. A computer-implemented method of detecting and monitoring server side state during scanning of a web application, the method comprising:

  • monitoring, via one or more computing devices, executed code of said web application while scanning said web application, wherein scanning includes invoking specific actions in relation to the web application;

    retrieving, via the one or more computing devices, code coverage information from said monitoring of said executed code and retrieving scanning information from said scanning of said web application;

    correlating, via the one or more computing devices, said code coverage information with said scanning information; and

    determining, via the one or more computing devices, a change in said server side state based on said correlation, wherein said determining comprises;

    retrieving the part of previously executed code on said web application that was executed between a time when a previous request was sent and when a previous response was received, wherein said request is the same as said previous request; and

    determining if said part of previously executed code is different from said part of said executed code that was executed between the time when said request was sent and when said response was received.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×