<p>Source code of a plurality of web pages including script code is statically analyzed. A page including a potential vulnerability is identified based on the static analysis. A page not including a potential vulnerability is identified based on the static analysis. The web page including the potential vulnerability is dynamically analyzed using a set of test payloads. The page not including the potential vulnerability is dynamically analyzed using a subset of the set of test payloads, the subset including fewer test payloads than the set of test payloads.</p>
申请公布号
WO2013098677(A1)
申请公布日期
2013.07.04
申请号
WO2012IB56919
申请日期
2012.12.03
申请人
INTERNATIONAL BUSINESS MACHINES CORPORATION;IBM (CHINA) INVESTMENT COMPANY LTD.;IBM RESEARCH GMBH
