Analisis Vulnerability Assessment Sistem Informasi Pendidikan, Pelatihan PT Azure Samudera Karsa Menggunakan ZAP

Authors

  • Soni Ayi Purnama Universitas Bengkulu Author

DOI:

https://doi.org/10.36050/2n4njj02

Keywords:

Information System, Vulnerabilty Assement, ZAP

Abstract

 This study aims to analyze the security of the educational and training information system at PT 
Azure Samudera Karsa using the vulnerability assessment method. Enhancing the security of information 
systems is a key priority in order to improve the credibility and quality of the educational and training 
services provided by PT Azure Samudera Karsa. In today's digital era, information systems that are 
vulnerable to cyberattacks can lead to various negative consequences, including data breaches, information 
manipulation, and operational disruptions. Therefore, security evaluation becomes a crucial aspect that 
must not be overlooked. The tool used to assess the security of the educational and training information 
system at PT Azure Samudera Karsa is Zed Attack Proxy (ZAP), an open-source application commonly used 
to detect security vulnerabilities in web applications. The results of the vulnerability assessment revealed 
three levels of alerts: 3 alerts at the medium level, 6 alerts at the low level, and 3 informational alerts, 
totaling 13 alerts. These findings serve as an important basis for management to take immediate corrective 
actions to minimize risks and enhance the protection of the system in use.

References

[1] BSSN, “Laporan Bulanan Publik,” no. 70, pp. 01–20, 2023, [Online]. Available: www.idsirtii.or.id

[2] S. Nurul, Shynta Anggrainy, and Siska Aprelyani, “Faktor-Faktor Yang Mempengaruhi Keamanan Sistem Informasi: Keamanan Informasi, Teknologi Informasi Dan Network (Literature Review Sim),” J. Ekon. Manaj. Sist. Inf., vol. 3, no. 5, pp. 564–573, 2022, doi: 10.31933/jemsi.v3i5.992.

[3] B. Harahap, “Penerapan Keamanan Owasp Terhadap Aplikasi GTFW Pada Website Universitas Battuta,” J. Inform. dan Teknol. Pendidik., vol. 1, no. 2, pp. 80–86, 2021, doi: 10.25008/jitp.v1i2.15.

[4] S. Hidayatulloh and D. Saptadiaji, “Penetration Testing pada Website Universitas ARS Menggunakan Open Web Application Security Project (OWASP),” J. Algoritm., vol. 18, no. 1, pp. 77–86, 2021, doi: 10.33364/algoritma/v.18-1.827.

[5] H. Sofyan, M. Sugiarto, and B. M. Akbar, “Implementation of Penetration testing on Websites to Improve Security of Information Assets UPN ‘Veteran’ Yogyakarta,” Telematika, vol. 20, no. 2, p. 153, 2023, doi:

10.31315/telematika.v20i2.7757.

[6] A. W. Kuncoro and F. Rahma, “Analisis Metode Open Web Application Security Project (OWASP) pada Pengujian Keamanan Website: Literature Review,” Automata, vol. 3, no. 1, pp. 1–5, 2021, [Online]. Available: https://www.sciencedirect.com

[7] F. Al Fajar, “Analisis Keamanan Aplikasi Web Prodi Teknik Informatika Uika Menggunakan Acunetix Web Vulnerability,” Inova-Tif, vol. 3, no. 2, p. 110, 2020, doi: 10.32832/inova-tif.v3i2.4127.

[8] G. Guntoro, L. Costaner, and M. Musfawati, “Analisis Keamanan Web Server Open Journal System (Ojs) Menggunakan Metode Issaf Dan Owaspv(Studi Kasus Ojs Universitas Lancang Kuning),” JIPI (Jurnal Ilm. Penelit. Dan Pembelajaran Inform., vol. 5, no. 1, p. 45, 2020, doi: 10.29100/jipi.v5i1.1565.

[9] Y. Yudiana, A. Elanda, and R. L. Buana, “Analisis Kualitas Keamanan Sistem Informasi E-Office Berbasi Website Pada STMIK Rosma Dengan Menggunakan OWASP Top 10,” CESS (Journal Comput. Eng. Syst. Sci., vol. 6, no. 2, p. 185, 2021, doi: 10.24114/cess.v6i2.24777.

[10] Riyan Farismana and Dian Pramadhana, “Perbandingan Vulnerability Assesment Menggunakan Owasp Zap dan Acunetix Pada Sistem Informasi Repositori Politeknik Negeri Indramayu,” J. Tek. Inform. dan Teknol. Inf., vol. 3, no. 2, pp. 26–32, 2023, doi: 10.55606/jutiti.v3i2.2853.

[11] I Made Adi Surya Permana, I. G. P. K. . Juliharta, and I. G. J. E. . Putra, “Analisis Keamanan Sistem Informasi Menggunakan Metode Vulnerability Assesment pada Aplikasi Web Karangasem.go.id”, remik, vol. 9, no. 2, pp. 466-473, Apr. 2025.

[12] Educational And Training Information System At PT. Azure Samudera Karsa, JTIF, vol. 1, no. 2, pp. 86–95, Nov. 2024, doi: 10.71251/jtif.v1i2a2.

[13] Pelatihan Penggunaan Sistem Informasi Pendidikan Dan Pelatihan Pada PT Azure Samudera Karsa, ngabdimas, vol. 8, no. 01 Juni, pp. 14–17, Jun. 2025, doi: 10.36050/1jassv94.

Downloads

Published

2025-08-30

Issue

Vol. 16 No. 02 (2025): Jurnal Ilmiah BETRIK : Besemah Teknologi Informasi dan Komputer

Section

Articles

License

Copyright (c) 2025 Soni Ayi Purnama (Author)

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.