Analisis Keamanan Website E-learning ILMU2 Menggunakan Metode Open Web Application Security Project ZAP (OWASP ZAP)

Authors

  • Aliyyah Nabiilah Farahdita Universitas Pembangunan Nasional "Veteran" Jawa Timur
  • Zahrah Aliyah Rachman Universitas Pembangunan Nasional "Veteran" Jawa Timur
  • Aliyyah Nabiilah Farahdita Universitas Pembangunan Nasional "Veteran" Jawa Timur
  • Fahryan Putra Ramadi Universitas Pembangunan Nasional "Veteran" Jawa Timur
  • Agung Brastama Universitas Pembangunan Nasional "Veteran" Jawa Timur
  • Siti Mukaromah Universitas Pembangunan Nasional "Veteran" Jawa Timur

DOI:

https://doi.org/10.61132/neptunus.v3i3.887

Keywords:

E-learning, OWASP-ZAP, security-analysis, system-vulnerability, web-application

Abstract

The development of e-learning platforms has transformed the landscape of education by providing flexible and accessible learning methods. However, security threats targeting web-based applications pose significant risks to the confidentiality, integrity, and availability of academic data. This research aims to analyze the security vulnerabilities of the ILMU2 e-learning website at UPN “Veteran” Jawa Timur using the Web Application Security Project Zed Attack Proxy (OWASP ZAP) methodology. The study applies a black-box testing approach to simulate attacks and identify potential weaknesses in the website's security mechanisms. Expected findings include the identification of vulnerabilities such as cross-site scripting (XSS), SQL injection, and security misconfigurations. The results are intended to provide insights for improving the security posture of the ILMU2 platform and contribute to the broader discourse on securing educational technology in higher education institutions.

References

Alshamrani, A., Alwan, M., & Shafie, A. (2020). Security threats and countermeasures in e-learning systems. Journal of Information Security Research, 12(2), 103–112.

Bator, R. J., Bryan, A. D., & Schultz, P. W. (2011). Who gives a hoot?: Intercept surveys of litterers and disposers. Environment and Behavior, 43(3), 295–315. https://doi.org/10.1177/0013916509356884

Hasan, H. H., & Nasihin, H. (2023). Efektivitas pemanfaatan media e-learning dalam pembelajaran fiqih kelas VIII di SMP IT Nur Hidayah Surakarta. Attractive: Innovative Education Journal, 5(2), 505–513.

Hidayati, S. N. (2016). Pengaruh pendekatan keras dan lunak pemimpin organisasi terhadap kepuasan kerja dan potensi mogok kerja karyawan. Jurnal Maksipreneur: Manajemen, Koperasi, dan Entrepreneurship, 5(2), 57–66. http://dx.doi.org/10.30588/SOSHUMDIK.v5i2.164

Kaur, J., & Kaur, A. (2021). OWASP ZAP based vulnerability detection of web applications. Journal of Web Engineering and Technology, 18(4), 245–254.

Kuncoro, A. W. (2022). Analisis metode Open Web Application Security Project (OWASP) pada pengujian keamanan website: Literature review. AUTOMATA, 3(1), 1–5.

Kusuma, G. (2022). Implementasi OWASP ZAP untuk pengujian keamanan sistem informasi akademik. Jurnal Teknologi Informasi: Jurnal Keilmuan dan Aplikasi Bidang Teknik Informatika, 16(2), 178–186.

Mohammed, A. A., Al-Khafaji, A. J., & Mahdi, D. S. (2022). Cybersecurity vulnerabilities in educational web applications: A case study. International Journal of Computer Applications, 184(3), 15–22.

Nasihin, H., Efendi, R., & Salmiyatun, S. (2020). Pemanfaatan Facebook sebagai media pembelajaran Pendidikan Agama Islam pada masa pandemi COVID-19. At-Turots: Jurnal Pendidikan Islam, 2(1), 23–37.

Nurdin, Salman, & Kadang, O. M. (2024). Pengujian kelemahan keamanan aplikasi web menggunakan peretasan etis. Prosiding Seminar Ilmiah Sistem Informasi dan Teknologi Informasi, 13(2), 234–243.

Nurlaili, I., & Hasanah, L. (2022). Analisis celah keamanan sistem informasi berbasis web menggunakan OWASP ZAP. Jurnal Ilmu Komputer dan Aplikasi, 14(3), 145–153.

Retnoningsih, E. (2017). Perbandingan Learning Management System Edmodo dan Moodle dalam pembelajaran online. Information System for Educators and Professionals, 1(2), 221–230.

Risdwiyanto, A., & Kurniyati, Y. (2015). Strategi pemasaran perguruan tinggi swasta di Kabupaten Sleman Yogyakarta berbasis rangsangan pemasaran. Jurnal Maksipreneur: Manajemen, Koperasi, dan Entrepreneurship, 5(1), 1–23. http://dx.doi.org/10.30588/SOSHUMDIK.v5i1.142

Sari, M. D., & Prasetyo, R. B. (2021). Evaluasi keamanan sistem informasi akademik menggunakan OWASP. Jurnal Teknologi Informasi dan Ilmu Komputer, 8(2), 220–228.

Sugara, V. I., & Sriyasa, I. W. (2024). Analisis keamanan website e-learning menggunakan OWASP ZAP. Jurnal Teknologi dan Keamanan Siber, 9(1), 25–34.

Yulianto, R., & Hidayat, R. (2020). Implementasi penetration testing pada website akademik berbasis OWASP ZAP. Prosiding SNATIF, 7(1), 98–103.

Downloads

Published

2025-06-26

How to Cite

Farahdita, A. N., Zahrah Aliyah Rachman, Aliyyah Nabiilah Farahdita, Fahryan Putra Ramadi, Agung Brastama, & Siti Mukaromah. (2025). Analisis Keamanan Website E-learning ILMU2 Menggunakan Metode Open Web Application Security Project ZAP (OWASP ZAP). Neptunus: Jurnal Ilmu Komputer Dan Teknologi Informasi, 3(3), 21–36. https://doi.org/10.61132/neptunus.v3i3.887

Issue

Vol. 3 No. 3 (2025): Agustus : Neptunus : Jurnal Ilmu Komputer Dan Teknologi Informasi

Section

Articles

License

Copyright (c) 2025 Neptunus: Jurnal Ilmu Komputer Dan Teknologi Informasi

Creative Commons License

This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.