"MAD GOAT PROJECT."
| Main Author: | |
|---|---|
| Publication Date: | 2024 |
| Format: | Master thesis |
| Language: | eng |
| Source: | Repositórios Científicos de Acesso Aberto de Portugal (RCAAP) |
| Download full: | http://hdl.handle.net/11110/3052 |
Summary: | The ever-changing technological landscape demands a greater effort on security best practices. Security in software is a responsibility shared by all. It is the responsibility of the software developers who are building important platforms that keep the world running, and it’s also the responsibility of the end-user who is utilizing said platforms. Software is everywhere and the need to have strong, independent systems that secure it is a must. Modern Application Development (MAD) makes use of a series of building blocks, like microservices, containerized applications, infrastructure as code, open-source software, and API communication. In today’s landscape, a single application can have dozens of independent services communicating with one another, and the relation between all these services can be hard to grasp for the security testing tools available in the market. The MAD Goat project is a web-based software platform that takes into consideration all the MAD building blocks while offering a vulnerable application by nature. This vulnerable application will serve as a security benchmark project to understand the quality of different security test scanners. The application has also an educational focus in its nature, offering its users an interactive learning experience. Through engaging lessons, users can enhance their understanding of the main vulnerabilities associated with MAD and develop mitigation strategies. |
| id |
RCAP_cb0ed43d5a5d4be3eafa8df614460aa8 |
|---|---|
| oai_identifier_str |
oai:ciencipca.ipca.pt:11110/3052 |
| network_acronym_str |
RCAP |
| network_name_str |
Repositórios Científicos de Acesso Aberto de Portugal (RCAAP) |
| repository_id_str |
https://opendoar.ac.uk/repository/7160 |
| spelling |
"MAD GOAT PROJECT."Cyber-SecurityCode VulnerabilityModern Application DevelopmentAST ToolsThe ever-changing technological landscape demands a greater effort on security best practices. Security in software is a responsibility shared by all. It is the responsibility of the software developers who are building important platforms that keep the world running, and it’s also the responsibility of the end-user who is utilizing said platforms. Software is everywhere and the need to have strong, independent systems that secure it is a must. Modern Application Development (MAD) makes use of a series of building blocks, like microservices, containerized applications, infrastructure as code, open-source software, and API communication. In today’s landscape, a single application can have dozens of independent services communicating with one another, and the relation between all these services can be hard to grasp for the security testing tools available in the market. The MAD Goat project is a web-based software platform that takes into consideration all the MAD building blocks while offering a vulnerable application by nature. This vulnerable application will serve as a security benchmark project to understand the quality of different security test scanners. The application has also an educational focus in its nature, offering its users an interactive learning experience. Through engaging lessons, users can enhance their understanding of the main vulnerabilities associated with MAD and develop mitigation strategies.2024-11-19T10:10:48Z2024-11-192024-11-19T00:00:00Zinfo:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/masterThesishttp://hdl.handle.net/11110/3052http://hdl.handle.net/11110/3052TID:203726880engVentuzelos, Luis Fernando Pereirainfo:eu-repo/semantics/openAccessreponame:Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)instname:FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologiainstacron:RCAAP2024-11-21T04:15:23Zoai:ciencipca.ipca.pt:11110/3052Portal AgregadorONGhttps://www.rcaap.pt/oai/openaireinfo@rcaap.ptopendoar:https://opendoar.ac.uk/repository/71602025-05-28T19:14:28.997509Repositórios Científicos de Acesso Aberto de Portugal (RCAAP) - FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologiafalse |
| dc.title.none.fl_str_mv |
"MAD GOAT PROJECT." |
| title |
"MAD GOAT PROJECT." |
| spellingShingle |
"MAD GOAT PROJECT." Ventuzelos, Luis Fernando Pereira Cyber-Security Code Vulnerability Modern Application Development AST Tools |
| title_short |
"MAD GOAT PROJECT." |
| title_full |
"MAD GOAT PROJECT." |
| title_fullStr |
"MAD GOAT PROJECT." |
| title_full_unstemmed |
"MAD GOAT PROJECT." |
| title_sort |
"MAD GOAT PROJECT." |
| author |
Ventuzelos, Luis Fernando Pereira |
| author_facet |
Ventuzelos, Luis Fernando Pereira |
| author_role |
author |
| dc.contributor.author.fl_str_mv |
Ventuzelos, Luis Fernando Pereira |
| dc.subject.por.fl_str_mv |
Cyber-Security Code Vulnerability Modern Application Development AST Tools |
| topic |
Cyber-Security Code Vulnerability Modern Application Development AST Tools |
| description |
The ever-changing technological landscape demands a greater effort on security best practices. Security in software is a responsibility shared by all. It is the responsibility of the software developers who are building important platforms that keep the world running, and it’s also the responsibility of the end-user who is utilizing said platforms. Software is everywhere and the need to have strong, independent systems that secure it is a must. Modern Application Development (MAD) makes use of a series of building blocks, like microservices, containerized applications, infrastructure as code, open-source software, and API communication. In today’s landscape, a single application can have dozens of independent services communicating with one another, and the relation between all these services can be hard to grasp for the security testing tools available in the market. The MAD Goat project is a web-based software platform that takes into consideration all the MAD building blocks while offering a vulnerable application by nature. This vulnerable application will serve as a security benchmark project to understand the quality of different security test scanners. The application has also an educational focus in its nature, offering its users an interactive learning experience. Through engaging lessons, users can enhance their understanding of the main vulnerabilities associated with MAD and develop mitigation strategies. |
| publishDate |
2024 |
| dc.date.none.fl_str_mv |
2024-11-19T10:10:48Z 2024-11-19 2024-11-19T00:00:00Z |
| dc.type.status.fl_str_mv |
info:eu-repo/semantics/publishedVersion |
| dc.type.driver.fl_str_mv |
info:eu-repo/semantics/masterThesis |
| format |
masterThesis |
| status_str |
publishedVersion |
| dc.identifier.uri.fl_str_mv |
http://hdl.handle.net/11110/3052 http://hdl.handle.net/11110/3052 TID:203726880 |
| url |
http://hdl.handle.net/11110/3052 |
| identifier_str_mv |
TID:203726880 |
| dc.language.iso.fl_str_mv |
eng |
| language |
eng |
| dc.rights.driver.fl_str_mv |
info:eu-repo/semantics/openAccess |
| eu_rights_str_mv |
openAccess |
| dc.source.none.fl_str_mv |
reponame:Repositórios Científicos de Acesso Aberto de Portugal (RCAAP) instname:FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologia instacron:RCAAP |
| instname_str |
FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologia |
| instacron_str |
RCAAP |
| institution |
RCAAP |
| reponame_str |
Repositórios Científicos de Acesso Aberto de Portugal (RCAAP) |
| collection |
Repositórios Científicos de Acesso Aberto de Portugal (RCAAP) |
| repository.name.fl_str_mv |
Repositórios Científicos de Acesso Aberto de Portugal (RCAAP) - FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologia |
| repository.mail.fl_str_mv |
info@rcaap.pt |
| _version_ |
1833597966702608384 |