Vulnerability Detection and Security Enhancing Using XAMPP, OWASP and DVWA

Most web applications contain vulnerabilities because of the security weaknesses, these vulnerabilities are the key for hackers to enter to the website and hack it, in addition to be modified and destroyed the sensitive data, robust protection in web programs is critical to the achievement of your online presence. Thus, locating the right gear requires deep knowledge and several steps, together with analyzing the improvement environment, enterprise wishes, and the web packages' complexity. On this research, we show the architecture of net applications then list and evaluate the large security vulnerabilities. Those vulnerabilities are inadequate shipping Layer protection, facts Leakage, cross-website Scripting, and square Injection. Further, this paper analyses the gear which might be used to test for those great vulnerabilities in web packages. Finally, it evaluates tools because of provide tips to the net packages' customers and administrators aiming to train them. This research is to detect the vulnerabilities of the web site in addition to assess these vulnerabilities for avoiding the malicious and unauthorized users to access the websites. Testing a website by using (XAMPP) Controller to open the website And Net sparker to find vulnerabilities of the website so, the application shows the impact and remedy of each vulnerability. The study has successfully done sex securities testing in the area of authentication, session management, input validation, output manipulation. The process of Net sparker scanned vulnerabilities listed in DVWA application and the arrangement is according to their risky rate by identifying vulnerabilities in a testing process and assess each vulnerability according to their rate if high or low or medium or information so, the application shows the impact and remedy of each vulnerabilities. The study recommends for developers to enhance security of web application and fix the most dangerous vulnerabilities as Denial of server, Password cracking and Buffer overflow to avoid the unauthorized client.to achieve the best result by Net sparker scanner OWASP must be used because it is better which contain many algorithms and this version has the ability to scan and give the report and remedy of vulnerabilities than OWASP and other methodologies.