Key points are not available for this paper at this time.
Penetration testing is a crucial defense against common Web application security threats such as SQL injection and cross-site scripting attacks. A proposed Web vulnerability scanner automatically generates test data with combinative evasion techniques, significantly expanding test coverage and revealing more vulnerabilities.
Huang et al. (Sun,) studied this question.