{"id":"https://openalex.org/W4394769809","doi":"https://doi.org/10.1007/s11416-024-00518-0","title":"Sniping at web applications to discover input-handling vulnerabilities","display_name":"Sniping at web applications to discover input-handling vulnerabilities","publication_year":2024,"publication_date":"2024-04-12","ids":{"openalex":"https://openalex.org/W4394769809","doi":"https://doi.org/10.1007/s11416-024-00518-0"},"language":"en","primary_location":{"id":"doi:10.1007/s11416-024-00518-0","is_oa":true,"landing_page_url":"https://doi.org/10.1007/s11416-024-00518-0","pdf_url":"https://link.springer.com/content/pdf/10.1007/s11416-024-00518-0.pdf","source":{"id":"https://openalex.org/S2764922190","display_name":"Journal of Computer Virology and Hacking Techniques","issn_l":"2263-8733","issn":["2263-8733"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Journal of Computer Virology and Hacking Techniques","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"hybrid","oa_url":"https://link.springer.com/content/pdf/10.1007/s11416-024-00518-0.pdf","any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5095381768","display_name":"Ciro Brandi","orcid":null},"institutions":[{"id":"https://openalex.org/I71267560","display_name":"University of Naples Federico II","ror":"https://ror.org/05290cv24","country_code":"IT","type":"education","lineage":["https://openalex.org/I71267560"]}],"countries":["IT"],"is_corresponding":true,"raw_author_name":"Ciro Brandi","raw_affiliation_strings":["Department of Electrical Engineering and Information Technology, University of Napoli Federico II, Naples, Campania, Italy"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Electrical Engineering and Information Technology, University of Napoli Federico II, Naples, Campania, Italy","institution_ids":["https://openalex.org/I71267560"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5082237113","display_name":"Gaetano Perrone","orcid":"https://orcid.org/0000-0001-8238-6426"},"institutions":[{"id":"https://openalex.org/I71267560","display_name":"University of Naples Federico II","ror":"https://ror.org/05290cv24","country_code":"IT","type":"education","lineage":["https://openalex.org/I71267560"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Gaetano Perrone","raw_affiliation_strings":["Department of Electrical Engineering and Information Technology, University of Napoli Federico II, Naples, Campania, Italy"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Electrical Engineering and Information Technology, University of Napoli Federico II, Naples, Campania, Italy","institution_ids":["https://openalex.org/I71267560"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5080036543","display_name":"Simon Pietro Romano","orcid":null},"institutions":[{"id":"https://openalex.org/I71267560","display_name":"University of Naples Federico II","ror":"https://ror.org/05290cv24","country_code":"IT","type":"education","lineage":["https://openalex.org/I71267560"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Simon Pietro Romano","raw_affiliation_strings":["Department of Electrical Engineering and Information Technology, University of Napoli Federico II, Naples, Campania, Italy"],"raw_orcid":"https://orcid.org/0000-0002-5876-0382","affiliations":[{"raw_affiliation_string":"Department of Electrical Engineering and Information Technology, University of Napoli Federico II, Naples, Campania, Italy","institution_ids":["https://openalex.org/I71267560"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5095381768"],"corresponding_institution_ids":["https://openalex.org/I71267560"],"apc_list":{"value":2390,"currency":"EUR","value_usd":2990},"apc_paid":{"value":2390,"currency":"EUR","value_usd":2990},"fwci":3.73,"has_fulltext":true,"cited_by_count":5,"citation_normalized_percentile":{"value":0.93546523,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":90,"max":99},"biblio":{"volume":"20","issue":"4","first_page":"641","last_page":"667"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9990000128746033,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9947999715805054,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/fuzz-testing","display_name":"Fuzz testing","score":0.9376128911972046},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7799791097640991},{"id":"https://openalex.org/keywords/web-application-security","display_name":"Web application security","score":0.5542779564857483},{"id":"https://openalex.org/keywords/web-application","display_name":"Web application","score":0.5278869867324829},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5266758799552917},{"id":"https://openalex.org/keywords/web-engineering","display_name":"Web engineering","score":0.513356626033783},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.4932381510734558},{"id":"https://openalex.org/keywords/secure-coding","display_name":"Secure coding","score":0.4284837543964386},{"id":"https://openalex.org/keywords/web-development","display_name":"Web development","score":0.42095428705215454},{"id":"https://openalex.org/keywords/web-service","display_name":"Web service","score":0.34086906909942627},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.23351547122001648},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.18268325924873352},{"id":"https://openalex.org/keywords/software-security-assurance","display_name":"Software security assurance","score":0.17072391510009766},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.10201340913772583}],"concepts":[{"id":"https://openalex.org/C111065885","wikidata":"https://www.wikidata.org/wiki/Q1189053","display_name":"Fuzz testing","level":3,"score":0.9376128911972046},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7799791097640991},{"id":"https://openalex.org/C59241245","wikidata":"https://www.wikidata.org/wiki/Q4781497","display_name":"Web application security","level":4,"score":0.5542779564857483},{"id":"https://openalex.org/C118643609","wikidata":"https://www.wikidata.org/wiki/Q189210","display_name":"Web application","level":2,"score":0.5278869867324829},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5266758799552917},{"id":"https://openalex.org/C97200028","wikidata":"https://www.wikidata.org/wiki/Q1196135","display_name":"Web engineering","level":5,"score":0.513356626033783},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.4932381510734558},{"id":"https://openalex.org/C22680326","wikidata":"https://www.wikidata.org/wiki/Q7444867","display_name":"Secure coding","level":5,"score":0.4284837543964386},{"id":"https://openalex.org/C79373723","wikidata":"https://www.wikidata.org/wiki/Q386275","display_name":"Web development","level":3,"score":0.42095428705215454},{"id":"https://openalex.org/C35578498","wikidata":"https://www.wikidata.org/wiki/Q193424","display_name":"Web service","level":2,"score":0.34086906909942627},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.23351547122001648},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.18268325924873352},{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.17072391510009766},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.10201340913772583},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1007/s11416-024-00518-0","is_oa":true,"landing_page_url":"https://doi.org/10.1007/s11416-024-00518-0","pdf_url":"https://link.springer.com/content/pdf/10.1007/s11416-024-00518-0.pdf","source":{"id":"https://openalex.org/S2764922190","display_name":"Journal of Computer Virology and Hacking Techniques","issn_l":"2263-8733","issn":["2263-8733"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Journal of Computer Virology and Hacking Techniques","raw_type":"journal-article"}],"best_oa_location":{"id":"doi:10.1007/s11416-024-00518-0","is_oa":true,"landing_page_url":"https://doi.org/10.1007/s11416-024-00518-0","pdf_url":"https://link.springer.com/content/pdf/10.1007/s11416-024-00518-0.pdf","source":{"id":"https://openalex.org/S2764922190","display_name":"Journal of Computer Virology and Hacking Techniques","issn_l":"2263-8733","issn":["2263-8733"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Journal of Computer Virology and Hacking Techniques","raw_type":"journal-article"},"sustainable_development_goals":[],"awards":[],"funders":[{"id":"https://openalex.org/F4320309590","display_name":"Universit\u00e0 degli Studi di Napoli Federico II","ror":"https://ror.org/05290cv24"}],"has_content":{"grobid_xml":false,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4394769809.pdf"},"referenced_works_count":72,"referenced_works":["https://openalex.org/W15977527","https://openalex.org/W103301550","https://openalex.org/W1513385292","https://openalex.org/W1515557371","https://openalex.org/W1522326949","https://openalex.org/W1668723973","https://openalex.org/W1933399177","https://openalex.org/W1976383745","https://openalex.org/W1978492394","https://openalex.org/W1981575482","https://openalex.org/W1981942666","https://openalex.org/W2020737857","https://openalex.org/W2027887391","https://openalex.org/W2029511378","https://openalex.org/W2032818299","https://openalex.org/W2034373522","https://openalex.org/W2037786632","https://openalex.org/W2041713059","https://openalex.org/W2049129243","https://openalex.org/W2050852462","https://openalex.org/W2060995180","https://openalex.org/W2062583373","https://openalex.org/W2065555413","https://openalex.org/W2067148378","https://openalex.org/W2080803678","https://openalex.org/W2087588854","https://openalex.org/W2111487235","https://openalex.org/W2118278564","https://openalex.org/W2128128820","https://openalex.org/W2130318821","https://openalex.org/W2132796821","https://openalex.org/W2134646643","https://openalex.org/W2144522314","https://openalex.org/W2149801502","https://openalex.org/W2167752994","https://openalex.org/W2197605297","https://openalex.org/W2222574961","https://openalex.org/W2262639634","https://openalex.org/W2292865721","https://openalex.org/W2337490104","https://openalex.org/W2469491375","https://openalex.org/W2511947018","https://openalex.org/W2514783878","https://openalex.org/W2519220890","https://openalex.org/W2592097190","https://openalex.org/W2613249892","https://openalex.org/W2750660666","https://openalex.org/W2754426524","https://openalex.org/W2777587568","https://openalex.org/W2780667792","https://openalex.org/W2921299360","https://openalex.org/W2946129952","https://openalex.org/W2979357014","https://openalex.org/W2998170209","https://openalex.org/W3022987785","https://openalex.org/W3049735680","https://openalex.org/W3094463643","https://openalex.org/W3108386049","https://openalex.org/W3125321227","https://openalex.org/W3203610772","https://openalex.org/W3204877722","https://openalex.org/W4229861117","https://openalex.org/W4230648425","https://openalex.org/W4237192248","https://openalex.org/W4243607364","https://openalex.org/W4293569719","https://openalex.org/W4309553431","https://openalex.org/W4320560161","https://openalex.org/W4320919360","https://openalex.org/W4323317130","https://openalex.org/W4381385223","https://openalex.org/W4385187279"],"related_works":["https://openalex.org/W2120675930","https://openalex.org/W1583761149","https://openalex.org/W3005817867","https://openalex.org/W2188399467","https://openalex.org/W2913452075","https://openalex.org/W2293103111","https://openalex.org/W3111842522","https://openalex.org/W3166827888","https://openalex.org/W2207901106","https://openalex.org/W4312473963"],"abstract_inverted_index":{"Abstract":[0],"Web":[1],"applications":[2],"play":[3],"a":[4,25,29,79,100,107],"crucial":[5],"role":[6],"in":[7,32,39,61,93,142],"modern":[8],"businesses,":[9],"offering":[10],"various":[11],"services":[12],"and":[13,121,153],"often":[14,68],"exposing":[15],"sensitive":[16],"data":[17],"that":[18,110],"can":[19],"be":[20],"enticing":[21],"to":[22,87,139,148],"attackers.":[23],"As":[24],"result,":[26],"there":[27],"is":[28],"growing":[30],"interest":[31],"finding":[33],"innovative":[34],"approaches":[35],"for":[36,58,127],"discovering":[37],"vulnerabilities":[38],"web":[40,47,88,143],"applications.":[41],"In":[42],"the":[43,49,70,91,94,115,128,156],"evolving":[44],"landscape":[45],"of":[46,51,72,82,117],"security,":[48,145],"realm":[50],"fuzz":[52],"testing":[53],"has":[54,67],"garnered":[55],"substantial":[56],"attention":[57],"its":[59],"effectiveness":[60],"identifying":[62],"vulnerabilities.":[63],"However,":[64],"existing":[65],"literature":[66],"underemphasized":[69],"nuances":[71],"web-centric":[73,104],"fuzzing":[74,83,112,119,151],"methodologies.":[75],"This":[76],"article":[77],"presents":[78,99],"comprehensive":[80],"exploration":[81],"techniques":[84],"specifically":[85],"tailored":[86],"applications,":[89],"addressing":[90,133],"gap":[92],"current":[95],"research.":[96],"Our":[97],"work":[98],"holistic":[101],"perspective":[102],"on":[103],"fuzzing,":[105],"introduces":[106],"modular":[108],"architecture":[109],"improves":[111],"effectiveness,":[113],"demonstrates":[114],"reusability":[116],"certain":[118],"steps,":[120],"offers":[122],"an":[123],"open-source":[124],"software":[125],"package":[126],"broader":[129],"security":[130],"community.":[131],"By":[132],"these":[134],"key":[135],"contributions,":[136],"we":[137],"aim":[138],"facilitate":[140],"advancements":[141],"application":[144],"empower":[146],"researchers":[147],"explore":[149],"new":[150],"techniques,":[152],"ultimately":[154],"enhance":[155],"overall":[157],"cybersecurity":[158],"landscape.":[159]},"counts_by_year":[{"year":2026,"cited_by_count":3},{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":1}],"updated_date":"2026-01-25T23:04:38.658462","created_date":"2025-10-10T00:00:00"}