Analisis Dan Mitigasi Celah Keamanan Website SIMPKN Informatika Menggunakan Metode Owasp Zed Attack Proxy (ZAP)

In today's technological developments, there are a variety of conveniences in processing information data that make it easier for every individual to build a website. Websites are one of the most common platforms for delivering information and services over the Internet. Even today, Websites are widely used in essential services, but this widespread use makes Websites popular targets for various threats in the form of cyber attacks. Although most technologies have been developed to protect websites and at least minimize cyber attacks, little has been done to establish the relationship between these technologies and provide a comprehensive picture of website application security research. To check website security vulnerabilities, you can use the OWASP (Open Web Application Security Project) method. One OWASP method that can analyze website vulnerabilities thoroughly is OWASP ZAP (Zed Attack Proxy). And not only analyzing website vulnerabilities but also providing security assessments on websites with OWASP Risk Rating which makes it easier to carry out mitigation on websites. This can provide recommendations for further improvements and can be implemented by system developers. This research aims to analyze the security vulnerabilities of the Muhammadiyah University of Malang SIMPKN Informatics Website using the OWASP ZAP method to obtain information from vulnerability testing results, assess the level of vulnerability through vulnerability testing results, and mitigate the Muhammadiyah Malang University SIMPKN Informatics Website to prevent attacks from occurring.