Application Vulnerability Scanning with Web Security Scanner

Identified and mitigated web application vulnerabilities, focusing on OWASP® Top 10 Cross-Site Scripting (XSS) risks, to secure a corporate banking application before production deployment.

Step 1

Created a static IP address and launched a virtual

Step 2

Deployed the vulnerable banking application on the VM.

Step 3

Set up and ran the application to prepare for scanning.

Step 4

Accessed and scanned the application using Web Security Scanner.

Step 4

Accessed and scanned the application using Web Security Scanner.

Step 5

Fixed vulnerabilities and re-scanned to verify mitigation

Step 5

Fixed vulnerabilities and re-scanned to verify mitigation

Steps

Step 1: Created a static IP address and launched a virtual machine.

Step 2: Deployed the vulnerable banking application on the VM.

Step 3: Set up and ran the application to prepare for scanning.

Step 4: Accessed and scanned the application using Web Security Scanner.

Step 5: Fixed vulnerabilities and re-scanned to verify mitigation.

Tools

Google Cloud Web Security Scanner, Google Cloud Compute Engine, Static IP Configuration, Cloud Shell

Frameworks

OWASP Top 10

Standards

ISO 27001, NIST CSF