Análisis de Vulnerabilidades a los Sistemas Informáticos de la Empresa Ingenio Azucarero del Norte de Compañía de Economía Mixta “IANCEM” Basado en la Metodología OWASP
In today's business landscape, characterized by an increasing dependence on technology, companies in the productive sector face unprecedented cybersecurity challenges. IANCEM, a leading sugar trading company in northern Ecuador, is no exception to this reality. Despite having recently modernize...
Gardado en:
| Autor Principal: | |
|---|---|
| Formato: | bachelorThesis |
| Publicado: |
2025
|
| Subjects: | |
| Acceso en liña: | https://repositorio.puce.edu.ec/handle/123456789/45467 |
| Tags: |
Engadir etiqueta
Sen Etiquetas, Sexa o primeiro en etiquetar este rexistro!
|
Engadir etiqueta | _version_ | 1836825330632884224 |
|---|---|
| author | Guerra Olmedo, Diego Fernando |
| author_facet | Guerra Olmedo, Diego Fernando |
| author_role | author |
| collection | Repositorio Pontificia Universidad Católica del Ecuador |
| dc.contributor.none.fl_str_mv | Naváez Erazo, Luis David |
| dc.creator.none.fl_str_mv | Guerra Olmedo, Diego Fernando |
| dc.date.none.fl_str_mv | 2025-03-14T21:46:59Z 2025-03-14T21:46:59Z 2025 |
| dc.format.none.fl_str_mv | application/pdf |
| dc.identifier.none.fl_str_mv | https://repositorio.puce.edu.ec/handle/123456789/45467 |
| dc.language.none.fl_str_mv | es |
| dc.publisher.none.fl_str_mv | PUCE - Ibarra |
| dc.rights.none.fl_str_mv | info:eu-repo/semantics/openAccess |
| dc.source.none.fl_str_mv | reponame:Repositorio Pontificia Universidad Católica del Ecuador instname:Pontificia Universidad Católica del Ecuador instacron:PUCE |
| dc.subject.none.fl_str_mv | ciberseguridad, sistemas informáticos, OWASP, OWASP ZAP, validación de seguridad, vulnerabilidades, inyección SQL, gestión de sesiones |
| dc.title.none.fl_str_mv | Análisis de Vulnerabilidades a los Sistemas Informáticos de la Empresa Ingenio Azucarero del Norte de Compañía de Economía Mixta “IANCEM” Basado en la Metodología OWASP |
| dc.type.none.fl_str_mv | info:eu-repo/semantics/publishedVersion info:eu-repo/semantics/bachelorThesis |
| description | In today's business landscape, characterized by an increasing dependence on technology, companies in the productive sector face unprecedented cybersecurity challenges. IANCEM, a leading sugar trading company in northern Ecuador, is no exception to this reality. Despite having recently modernized its facilities to optimize production and comply with rigorous environmental standards, IANCEM is in a vulnerable position when it comes to the security of its web systems. This investigation arises from the critical need to assess and strengthen IANCEM's security posture in the digital environment. Although the company has implemented security measures on its web systems, these have not been subjected to thorough validation to determine their effectiveness against the increasing sophistication of cyberattacks. This gap in validation represents a significant risk to data integrity, operational continuity, and ultimately the company's reputation in an increasingly competitive and security-conscious market. The main objective of this study is to perform a comprehensive and meticulous analysis of IANCEM web systems, using the OWASP (Open Web Application Security Project) methodology as a reference framework. This methodological choice is not arbitrary\; OWASP has established itself as a de facto standard in the IT security industry, offering a structured and up-to-date approach to the identification, assessment and mitigation of security risks in web applications. The analysis will focus on the detection and assessment of a wide range of potential vulnerabilities, with special emphasis on those that have proven to be particularly critical in similar business environments. |
| eu_rights_str_mv | openAccess |
| format | bachelorThesis |
| id | PUCE_c7aff264e7b82a43383e52608bb77d19 |
| instacron_str | PUCE |
| institution | PUCE |
| instname_str | Pontificia Universidad Católica del Ecuador |
| language_invalid_str_mv | es |
| network_acronym_str | PUCE |
| network_name_str | Repositorio Pontificia Universidad Católica del Ecuador |
| oai_identifier_str | oai:repositorio.puce.edu.ec:123456789/45467 |
| publishDate | 2025 |
| publisher.none.fl_str_mv | PUCE - Ibarra |
| reponame_str | Repositorio Pontificia Universidad Católica del Ecuador |
| repository.mail.fl_str_mv | . |
| repository.name.fl_str_mv | Repositorio Pontificia Universidad Católica del Ecuador - Pontificia Universidad Católica del Ecuador |
| repository_id_str | 2180 |
| spelling | Análisis de Vulnerabilidades a los Sistemas Informáticos de la Empresa Ingenio Azucarero del Norte de Compañía de Economía Mixta “IANCEM” Basado en la Metodología OWASPGuerra Olmedo, Diego Fernandociberseguridad, sistemas informáticos, OWASP, OWASP ZAP, validación de seguridad, vulnerabilidades, inyección SQL, gestión de sesionesIn today's business landscape, characterized by an increasing dependence on technology, companies in the productive sector face unprecedented cybersecurity challenges. IANCEM, a leading sugar trading company in northern Ecuador, is no exception to this reality. Despite having recently modernized its facilities to optimize production and comply with rigorous environmental standards, IANCEM is in a vulnerable position when it comes to the security of its web systems. This investigation arises from the critical need to assess and strengthen IANCEM's security posture in the digital environment. Although the company has implemented security measures on its web systems, these have not been subjected to thorough validation to determine their effectiveness against the increasing sophistication of cyberattacks. This gap in validation represents a significant risk to data integrity, operational continuity, and ultimately the company's reputation in an increasingly competitive and security-conscious market. The main objective of this study is to perform a comprehensive and meticulous analysis of IANCEM web systems, using the OWASP (Open Web Application Security Project) methodology as a reference framework. This methodological choice is not arbitrary\; OWASP has established itself as a de facto standard in the IT security industry, offering a structured and up-to-date approach to the identification, assessment and mitigation of security risks in web applications. The analysis will focus on the detection and assessment of a wide range of potential vulnerabilities, with special emphasis on those that have proven to be particularly critical in similar business environments.En el panorama empresarial actual, caracterizado por una creciente dependencia de la tecnología, las empresas del sector productivo se enfrentan a desafíos sin precedentes en materia de ciberseguridad. IANCEM, una empresa líder en la comercialización de azúcar en el norte de Ecuador, no es una excepción a esta realidad. A pesar de haber modernizado recientemente sus instalaciones para optimizar la producción y cumplir con rigurosas normas ambientales, IANCEM se encuentra en una posición vulnerable en lo que respecta a la seguridad de sus sistemas informáticos. La presente investigación surge de la necesidad crítica de evaluar y fortalecer la postura de seguridad de IANCEM en el entorno digital. Aunque la empresa ha implementado medidas de seguridad en sus sistemas informáticos, estas no han sido sometidas a una validación exhaustiva para determinar su efectividad frente a la creciente sofisticación de los ciberataques. Esta brecha en la validación representa un riesgo significativo para la integridad de los datos, la continuidad operativa y, en última instancia, la reputación de la empresa en un mercado cada vez más competitivo y consciente de la seguridad. El objetivo principal de este estudio es realizar un análisis comprehensivo y meticuloso de los sistemas informáticos de IANCEM, utilizando como marco de referencia la metodología OWASP (Open Web Application Security Project). Esta elección metodológica no es arbitraria; OWASP se ha establecido como un estándar de facto en la industria de la seguridad informática, ofreciendo un enfoque estructurado y actualizado para la identificación, evaluación y mitigación de riesgos de seguridad en los sistemas. El análisis se centrará en la detección y evaluación de una amplia gama de vulnerabilidades potenciales, con especial énfasis en aquellas que han demostrado ser particularmente críticas en entornos empresariales similares.In today's business landscape, characterized by an increasing dependence on technology, companies in the productive sector face unprecedented cybersecurity challenges. IANCEM, a leading sugar trading company in northern Ecuador, is no exception to this reality. Despite having recently modernized its facilities to optimize production and comply with rigorous environmental standards, IANCEM is in a vulnerable position when it comes to the security of its web systems. This investigation arises from the critical need to assess and strengthen IANCEM's security posture in the digital environment. Although the company has implemented security measures on its web systems, these have not been subjected to thorough validation to determine their effectiveness against the increasing sophistication of cyberattacks. This gap in validation represents a significant risk to data integrity, operational continuity, and ultimately the company's reputation in an increasingly competitive and security-conscious market. The main objective of this study is to perform a comprehensive and meticulous analysis of IANCEM web systems, using the OWASP (Open Web Application Security Project) methodology as a reference framework. This methodological choice is not arbitrary; OWASP has established itself as a de facto standard in the IT security industry, offering a structured and up-to-date approach to the identification, assessment and mitigation of security risks in web applications. The analysis will focus on the detection and assessment of a wide range of potential vulnerabilities, with special emphasis on those that have proven to be particularly critical in similar business environments.PUCE - IbarraNaváez Erazo, Luis David2025-03-14T21:46:59Z2025-03-14T21:46:59Z2025info:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/bachelorThesisapplication/pdfhttps://repositorio.puce.edu.ec/handle/123456789/45467esinfo:eu-repo/semantics/openAccessreponame:Repositorio Pontificia Universidad Católica del Ecuadorinstname:Pontificia Universidad Católica del Ecuadorinstacron:PUCE2025-06-09T21:16:39Zoai:repositorio.puce.edu.ec:123456789/45467Institucionalhttp://repositorio.puce.edu.ec/Institución privadahttps://www.puce.edu.ec/http://repositorio.puce.edu.ec/oai.Ecuador...opendoar:21802025-07-05T15:18:30.100798Repositorio Pontificia Universidad Católica del Ecuador - Pontificia Universidad Católica del Ecuadortrue |
| spellingShingle | Análisis de Vulnerabilidades a los Sistemas Informáticos de la Empresa Ingenio Azucarero del Norte de Compañía de Economía Mixta “IANCEM” Basado en la Metodología OWASP Guerra Olmedo, Diego Fernando ciberseguridad, sistemas informáticos, OWASP, OWASP ZAP, validación de seguridad, vulnerabilidades, inyección SQL, gestión de sesiones |
| status_str | publishedVersion |
| title | Análisis de Vulnerabilidades a los Sistemas Informáticos de la Empresa Ingenio Azucarero del Norte de Compañía de Economía Mixta “IANCEM” Basado en la Metodología OWASP |
| title_full | Análisis de Vulnerabilidades a los Sistemas Informáticos de la Empresa Ingenio Azucarero del Norte de Compañía de Economía Mixta “IANCEM” Basado en la Metodología OWASP |
| title_fullStr | Análisis de Vulnerabilidades a los Sistemas Informáticos de la Empresa Ingenio Azucarero del Norte de Compañía de Economía Mixta “IANCEM” Basado en la Metodología OWASP |
| title_full_unstemmed | Análisis de Vulnerabilidades a los Sistemas Informáticos de la Empresa Ingenio Azucarero del Norte de Compañía de Economía Mixta “IANCEM” Basado en la Metodología OWASP |
| title_short | Análisis de Vulnerabilidades a los Sistemas Informáticos de la Empresa Ingenio Azucarero del Norte de Compañía de Economía Mixta “IANCEM” Basado en la Metodología OWASP |
| title_sort | Análisis de Vulnerabilidades a los Sistemas Informáticos de la Empresa Ingenio Azucarero del Norte de Compañía de Economía Mixta “IANCEM” Basado en la Metodología OWASP |
| topic | ciberseguridad, sistemas informáticos, OWASP, OWASP ZAP, validación de seguridad, vulnerabilidades, inyección SQL, gestión de sesiones |
| url | https://repositorio.puce.edu.ec/handle/123456789/45467 |