Vulnerability Assessment Pada Situs XYZ Menggunakan Web Vulnerability Scanner Burp Suite

Authors

  • Mamay Syani Politeknik TEDC Bandung
  • Taufik Fajar Mustafa Politeknik TEDC Bandung
  • Hafizh Maalik Falah Politeknik TEDC Bandung
  • Tuti Rohayati Universitas Galuh Ciamis
  • Usep Abdul Rosid Politeknik Negeri Subang

DOI:

https://doi.org/10.25157/jsig.v3i2.4961

Keywords:

Website Security, Penetration Testing, NIST SP 800-115, Burp Suite, Government Website

Abstract

The increasing adoption of digital services by local governments demands greater attention to cybersecurity aspects. This study applies the penetration testing method using a Blue Teaming approach on XYZ, a web-based public service portal using Burp Suite tools, to identify potential security vulnerabilities. The testing follows the NIST SP 800-115 guidelines and reveals 16 vulnerabilities classified as low to medium severity. Findings indicate weaknesses such as cookies without Secure and HttpOnly attributes, the use of vulnerable JavaScript libraries, and the absence of HSTS policy. Recommendations are provided to help site administrators enhance overall system security resilience.

Additional Files

Published

11-07-2025

How to Cite

Syani, M., Taufik Fajar Mustafa, Maalik Falah, H., Rohayati, T., & Abdul Rosid, U. (2025). Vulnerability Assessment Pada Situs XYZ Menggunakan Web Vulnerability Scanner Burp Suite. Jurnal Sistem Informasi Galuh, 3(2), 47–53. https://doi.org/10.25157/jsig.v3i2.4961

Issue

Vol. 3 No. 2 (2025): Journal of Galuh Information Systems

Section

Articles