<![CDATA[Purpose: Web-based information systems have become an essential bridge for facilitating accessibility and the use of information. However, with the convenience of access and usage, serious threats related to data security in web systems have also emerged. These threats may arise due to vulnerabilities in the web system, which can be exploited by irresponsible parties to carry out cyberattacks aimed at stealing, damaging, or altering the available information. Therefore, this research is conducted as a preventive measure against these threats through preventive actions by analyzing security vulnerabilities on websites using penetration testing, one of which utilizes the Open Web Application Security Project (OWASP).Design/methodology/approach: Security analysis of information systems using OWASP ZAP with a penetration testing method.Findings/result: The testing results and analys conducted on the target website of the web-based electronic archiving system, http://silancarbedas.bandungkab.go.id/, revealed 13 security vulnerabilities categorized under several OWASP ZAP 10:2021 frameworks. Based on these findings, several suggestions or recommendations have been provided to address the website vulnerabilities, which can be used by the website developers to enhance the site's securityOriginality/value/state of the art: Vulnerability testing on the web-based electronic archiving information system at http://silancarbedas.bandungkab.go.id/ has not been conducted previously.]]>
Copyrights © 2025
