Method of interworking web-firewall and weak point analyzer

摘要

Disclosed is a method for interworking a web-firewall and a vulnerability analyzing tool together, which improves the effectiveness of defense and detection systems through the interworking of a source code vulnerability analyzing tool providing root vulnerability information of a web source code and a web-firewall used to protect the website. Through the analysis and approval processes of the source code vulnerability analyzing tool, only the code which guarantees security integrity without the vulnerability of the website is selectively uploaded to a web server and inputs and tracks a virtual value in source code vulnerability elements to verify the source code vulnerability in order to improve the accuracy of detected source code vulnerability analysis.