ANALISIS KEAMANAN SITUS SISTEM INFORMASI AKADEMIK UPNVJ MENGGUNAKAN METODE NIST SP 800-115 (NUCLEI, BURP SUITE)

Muhammad Fauzan Azhima, . (2025) ANALISIS KEAMANAN SITUS SISTEM INFORMASI AKADEMIK UPNVJ MENGGUNAKAN METODE NIST SP 800-115 (NUCLEI, BURP SUITE). Skripsi thesis, Universitas Pembangunan Nasional Veteran Jakarta.

[img] Text
ABSTRAK.pdf
Download (241kB)
[img] Text
AWAL.pdf
Download (836kB)
[img] Text
BAB 1.pdf
Restricted to Repository UPNVJ Only
Download (291kB)
[img] Text
BAB 2.pdf
Restricted to Repository UPNVJ Only
Download (560kB)
[img] Text
BAB 3.pdf
Restricted to Repository UPNVJ Only
Download (307kB)
[img] Text
BAB 4.pdf
Restricted to Repository UPNVJ Only
Download (2MB)
[img] Text
BAB 5.pdf
Download (281kB)
[img] Text
DAFTAR PUSTAKA.pdf
Download (248kB)
[img] Text
RIWAYAT HIDUP.pdf
Restricted to Repository staff only
Download (163kB)
[img] Text
LAMPIRAN.pdf
Restricted to Repository UPNVJ Only
Download (2MB)
[img] Text
HASIL PLAGIARISME.pdf
Restricted to Repository staff only
Download (11MB)
[img] Text
ARTIKEL KI.pdf
Restricted to Repository staff only
Download (2MB)

Abstract

Websites have become an integral part of various sectors, including higher education through the implementation of academic information systems. However, this convenience comes with a heightened risk of cyberattacks. In the first quarter of 2024, Indonesia recorded nearly 6 million cyber threats, with 21.2% originating from infected websites. The UPNVJ Academic Information System (SIAKAD), used by more than 21,000 active and new students, stores sensitive data that is vulnerable to leaks and exploitation. This study aims to assess the security of the UPNVJ SIAKAD site using the NIST SP 800-115 method with a Black Box approach, supported by tools such as Nmap, Burp Suite, and Nuclei. The assessment identified seven security vulnerabilities, consisting of six medium-risk and one low-risk issues. Medium-risk vulnerabilities include two Stored XSS (in the Dikjar Consultation and PA Lecturer features), two IDORs (in profile photo and SPC billing access), and two No Rate Limit issues (in the Dikjar Consultation and PA Lecturer features). Additionally, one low-risk vulnerability was identified as Reflected XSS in the Teaching Materials feature.

Item Type: Thesis (Skripsi)
Additional Information: [No.Panggil: 2110511073] [Pembimbing: Henki Bayu Seta] [Penguji 1: Prof. Dr. Ir. Supriyanto] [Penguji 2: Hamonangan Kinantan P]
Uncontrolled Keywords: Academic Information System, Website Security, NIST SP 800-115, Black Box Testing
Subjects: Q Science > QA Mathematics > QA75 Electronic computers. Computer science
Q Science > QA Mathematics > QA76 Computer software
Divisions: Fakultas Ilmu Komputer > Program Studi Informatika (S1)
Depositing User: MUHAMMAD FAUZAN AZHIMA
Date Deposited: 15 Aug 2025 08:45
Last Modified: 15 Aug 2025 08:45
URI: http://repository.upnvj.ac.id/id/eprint/37623

Actions (login required)

View Item View Item