Analisis Website Tapanuli Tengah Menggunakan Metode Open Web Application Security Project Zap (Owasp Zap)

  • Khairrun Nisa * Mail Universitas Islam Negeri Sumatera Utara, Indonesia
  • Muklas Adi Putra Universitas Islam Negeri Sumatera Utara, Indonesia
  • Rizky Akbar Siregar Universitas Islam Negeri Sumatera Utara, Indonesia
  • Muhammad Dedi Irawan Universitas Islam Negeri Sumatera Utara, Indonesia
DOI: https://doi.org/10.47065/bit.v3i4.389
Keywords: Tapanuli Tengah, OWASP, Website, Keamanan

Abstract

Data security on the website is very important to prevent misuse of data or information on the website. Due to the rapid advancement of technology, many irresponsible persons who are often called hackers or hackers steal data. The author is interested in learning more about the security of the Central Tapanuli website (TAPTENG) as a result of this research. In this section, the author checks the security of the Tapanuli Tengah website using the OWASP ZAP method to assist in determining the actions that need to be taken to mitigate the vulnerability. There are several stages of OWASP that are carried out including Information Gathering, Session Management Testing, Data Validation Testing, and Webservices Testing. From the overall research results detected on the 192.187.99.170 website, the results obtained were 22079 instances with the threat name Timestamp Disclosure - Unix with the threat level at the Low level, which means it is at a low level.

References

L. Costaner and dan Musfawati, “ANALISIS KEAMANAN WEB SERVER OPEN JOURNAL SYSTEM (OJS) MENGGUNAKAN METODE ISSAF DAN OWASP (STUDI KASUS OJS UNIVERSITAS LANCANG KUNING).”

T. Revolino Syarif and D. Andri Jatmiko, “ANALISIS PERBANDINGAN METODE WEB SECURITY PTES, ISSAF DAN OWASP DI DINAS KOMUNIKASI DAN INFORMASI KOTA BANDUNG.”

A. Hermawan1, T. Hartati2, and Y. A. Wijaya3, “Analisa Keamanan Data melalui Website Zahra Software Menggunakan Metode Keamanan Informasi CIA Triad,” vol. 7, no. 3, 2022.

A. Elanda and R. Lintang Buana, “ANALISIS KEAMANAN SISTEM INFORMASI BERBASIS WEBSITE DENGAN METODE OPEN WEB APPLICATION SECURITY PROJECT (OWASP) VERSI 4: SYSTEMATIC REVIEW,” 2020. [Online]. Available: www.xyz.com

D. Hariyadi and F. E. Nastiti, “Analisis Keamanan Sistem Informasi Menggunakan Sudomy dan OWASP ZAP di Universitas Duta Bangsa Surakarta,” Jurnal Komtika (Komputasi dan Informatika), vol. 5, no. 1, pp. 35–42, Jul. 2021, doi: 10.31603/komtika.v5i1.5134.

A. W. Kuncoro, J. Informatika, F. Rahma, and M. E. Jurusan Informatika, “Analisis Metode Open Web Application Security Project (OWASP) pada Pengujian Keamanan Website: Literature Review.” [Online]. Available: https://www.sciencedirect.com

I. O. Riandhanu, “Analisis Metode Open Web Application Security Project (OWASP) Menggunakan Penetration Testing pada Keamanan Website Absensi,” Jurnal Informasi dan Teknologi, Oct. 2022, doi: 10.37034/jidt.v4i3.236.

A. Elanda and R. Lintang Buana, “ANALISIS KUALITAS KEAMANAN SISTEM INFORMASI E-OFFICE BERBASIS WEBSITE PADA STMIK ROSMA DENGAN MENGGUNAKAN OWASP TOP 10,” 2021.

B. Subana and A. Fadlil, “Web Server Security Analysis Using The OWASP Mantra Method,” 2020. [Online]. Available: https://iocscience.org/ejournal/index.php/mantik/index

“277-Article Text-1190-1-10-20220501”.

I. M. Edy Listartha, I. M. A. Premana Mitha, M. W. Aditya Arta, and I. Km. W. Yuda Arimika, “Analisis Kerentanan Website SMA Negeri 2 Amlapura Menggunakan Metode OWASP (Open Web Application Security Project),” SIMKOM, vol. 7, no. 1, pp. 23–27, Jan. 2022, doi: 10.51717/simkom.v7i1.63.

A. Kerentanan Keamanan, W. Menggunakan, D. Aryanti, N. Dan, and J. N. Utamajaya, “METODE OWASP (OPEN WEB APPLICATION SECURITY PROJECT) PADA DINAS TENAGA KERJA,” 2021.

I. Idris, M. U. Majigi, S. Abdulhamid, M. Olalere, and S. I. Rambo, “Vulnerability Assessment of Some Key Nigeria Government Websites.”

M. Bach-Nutman, “Understanding The Top 10 OWASP Vulnerabilities.”

“InfoTekJar : Jurnal Nasional Informatika dan Teknologi Jaringan”, doi: 10.30743/infotekjar.v4i2.2332.

B. Ghozali, K. Kusrini, and S. Sudarmawan, “Mendeteksi Kerentanan Keamanan Aplikasi Website Menggunakan Metode Owasp (Open Web Application Security Project) Untuk Penilaian Risk Rating,” Creative Information Technology Journal, vol. 4, no. 4, p. 264, Jan. 2019, doi: 10.24076/citec.2017v4i4.119.

C Rizal, “Perancangan Server Kantor Desa Tomuan Holbung Berbasis Client Server,” Bulletin of Information Technology (BIT), p.27-33, 2022.

Dimensions Badge
Published
2022-12-26
How to Cite
Nisa, K., Putra, M. A., Siregar, R. A., & Dedi Irawan, M. (2022). Analisis Website Tapanuli Tengah Menggunakan Metode Open Web Application Security Project Zap (Owasp Zap). Bulletin of Information Technology (BIT), 3(4), 308 - 216. https://doi.org/10.47065/bit.v3i4.389
Issue
Vol 3 No 4: Desember 2022
Section
Articles

Copyright (c) 2022 Khairrun Nisa, Muklas Adi Putra, Rizky Abar Siregar, Muhammad Dedi Irawan

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 International License.

Authors who publish with this journal agree to the following terms:

  1. Authors retain copyright and grant the journal right of first publication with the work simultaneously licensed under Creative Commons Attribution 4.0 International License that allows others to share the work with an acknowledgment of the work's authorship and initial publication in this journal.
  2. Authors are able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal's published version of the work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgment of its initial publication in this journal.
  3. Authors are permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) prior to and during the submission process, as it can lead to productive exchanges, as well as earlier and greater citation of published work (Refer to The Effect of Open Access).

Most read articles by the same author(s)