ANALISIS KERENTANAN MENGGUNAKAN DYNAMIC APPLICATION SECURITY TESTING (DAST) BERDASARKAN PEDOMAN OWASP PADA SITUS WEBSITE EPRINTS UNIVERSITAS MUHAMMADIYAH MALANG

Information system security is crucial in managing digital data, especially for repository websites like Eprints UMM. This study aims to identify security vulnerabilities in Eprints UMM, focusing on Data Validation Testing and Error Handling using Zed Attack Proxy (ZAP) and Arachni testing tools. The results indicate weaknesses in input validation, making the system susceptible to SQL Injection and Cross-Site Scripting (XSS) attacks, as well as error message handling that may expose sensitive information. To enhance security, it is recommended that Eprints UMM administrators improve input validation, secure error handling mechanisms, and regularly update both software and hardware. These measures can minimize cybersecurity risks and enhance system reliability.