Vulture: modular secure web application for small and medium sized companies

OData support
Supervisor:
Dr. Lengyel László
Department of Automation and Applied Informatics

The goal of my thesis is twofold. Firstly, to create an easy to use web application, which is also customizable and supports extensibility. Secondly, to guide the reader through the used technology and it’s peculiaries.

I will start out with the introduction of the „Full-stack Javascript” paradigm. The actual language has been around for about 20 years. However it was only recently used in backend systems. I will talk about the factors of it’s success and discuss some of the „de facto” libraries from the stack. At the end of this introduction, I will also present the Agile methodology and it’s used parctices.

After the introduction I will review the application. It is built around the idea of a four step verification process. The first of these is the Discovery of assets. Then comes Inventory. Followed by a phase called Scan, which is used to run automated scans on the given asset. The line is ended by the Results step where manual analysis occurs. One of my goals was to heavily automate the first three of these steps.

The application has two main components. The first is it’s web interface used to communicate with it. The second is a background processing entity called Agent. It is responsible for running each of the automated processes: discovery, inventory, scanning. I will explain all of these in more detail in a dedicated chapter.

Towards the end of my essay, I will compare and contrast the application to other similar solutions and conclude the future of it.

In the last chapter I review my work and discuss some difficulties during development. I will also shortly discuss the next steps and finally conclude with a brief but comprehensive summary.

Downloads

Please sign in to download the files of this thesis.