Please use this identifier to cite or link to this item:
Title: Dependency scanner : detecting security vulnerabilities in applications (Python)
Authors: Geh, Benjamin Ming Chang
Keywords: DRNTU::Engineering::Computer science and engineering
Issue Date: 2017
Abstract: In software development, third party libraries are usually included as part of the development process of many applications. These libraries may contain well-known vulnerabilities which can be found in the National Vulnerabilities Database (NVD). These vulnerabilities will eventually be a source of a lot of major security exploits. Using known vulnerable components has been the reason for most of the security breaches today. Hence, there is a motivation to develop an application which is able to scan for such vulnerabilities and inform the user which in turn allows him to make wiser decisions on whether to use such libraries or change the libraries used. After researching on such tools, the ones currently on the market is only able to scan for Java and JavaScript applications. Furthermore, the current dependency checkers run using command prompt scripts making it less user friendly for most people, as they have to know some command line scripts at the very least in order to scan for these libraries. Last but not least, it takes quite an amount of time to scan applications. This project aims to improve the efficiency of the time taken for scanning such applications, extending the current tools to enable it to scan for Python applications and also develop a web application to ease the usage of such tools. This paper will discuss about the tools used for development, the system designs, the data results achieved and also some recommendations for future projects.
Rights: Nanyang Technological University
Fulltext Permission: restricted
Fulltext Availability: With Fulltext
Appears in Collections:SCSE Student Reports (FYP/IA/PA/PI)

Files in This Item:
File Description SizeFormat 
  Restricted Access
2.36 MBAdobe PDFView/Open

Page view(s) 50

checked on Oct 20, 2020

Download(s) 50

checked on Oct 20, 2020

Google ScholarTM


Items in DR-NTU are protected by copyright, with all rights reserved, unless otherwise indicated.