The Role of Advanced Penetration Testing Techniques in Enhancing   Cybersecurity: A Survey on Web Application Security

Authors

  • Emmanuel Bugingo University of Rwanda, University of Kigali
  • Voltaire Ishimwe University of Kigali
  • Ghislaine Uwase Simbi University of Kigali
  • Adeline Dusenge University of Kigali
  • Jean Baptiste Nizeyimana University of Kigali
Views: 457 Downloads: 302 DOI: https://doi.org/10.12962/j24068535.v24i1.a1372

Abstract

The Internet continues to grow as an exciting platform for numerous web applications, providing crucial services to various industries and user communities. However, this expansion comes with an increase in cybersecurity threats, as web applications continue to be a primary target for malicious entities. Despite the creation of numerous security frameworks, yearly reports and the OWASP (Open Web Application Security Project) Top 10 consistently highlight the ongoing presence of severe vulnerabilities in contemporary web platforms. This paper examines the significance of advanced penetration testing methods in enhancing cybersecurity, particularly in the context of web application security. Utilizing a combination of manual and automated testing approaches, incorporating tools such as BURP SUITE and METASPLOIT, this study examines how sophisticated penetration testing can uncover, exploit, and address vulnerabilities, including SQL injections, cross-site scripting (XSS), and weak authentication methods. The results highlight that even small vulnerabilities can have significant practical impacts, emphasizing the importance of ongoing, intelligent testing approaches.

Downloads

Download data is not yet available.

Downloads

Published

2026-01-15

Issue

Vol. 24, No. 1, January 2026

Section

Articles

License

Copyright (c) 2026 Emmanuel Bugingo, Voltaire Ishimwe, Ghislaine Uwase Simbi, Adeline Dusenge, Jean Baptiste Nizeyimana

Creative Commons License

This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.

All papers should be submitted electronically. All submitted manuscripts must be original work that is not under submission at another journal or under consideration for publication in another form, such as a monograph or chapter of a book. Authors of submitted papers are obligated not to submit their paper for publication elsewhere until an editorial decision is rendered on their submission. Further, authors of accepted papers are prohibited from publishing the results in other publications that appear before the paper is published in JUTI unless they receive approval for doing so from the Editor-in-Chief.

JUTI open access articles are distributed under a Creative Commons Attribution-ShareAlike 4.0 International License. This license lets the audience to give appropriate credit, provide a link to the license, and indicate if changes were made and if they remix, transform, or build upon the material, they must distribute contributions under the same license as the original.

How to Cite

[1]
E. BUGINGO, V. ISHIMWE, G. UWASE SIMBI, A. DUSENGE, and J. B. NIZEYIMANA, “The Role of Advanced Penetration Testing Techniques in Enhancing   Cybersecurity: A Survey on Web Application Security”, JUTI, vol. 24, no. 1, pp. 87–118, Jan. 2026, doi: 10.12962/j24068535.v24i1.a1372.