Proceedings of the 2nd International Conference on Sustainable Business Practices and Innovative Models (ICSBPIM-2025)

<Previous Article In Volume
Next Article In Volume>

Comprehensive Survey on Vulnerability Assessment and Penetration Testing (VAPT) for Cloud-Hosted Web Applications

Authors
Ashish Joshi1, *, Ankur Dumka2, Devesh Pratap Singh1, Ashish Semwal3, *
1Graphic Era University, Dehradun, India, 248001
2WIT, Dehradun, India, 248001
3HNBGU (A Central University), Srinagar Garhwal, Uttarakhand, India, 246174
*Corresponding author. Email: a.joshicse1986@gmail.com
*Corresponding author. Email: ash.semwal@gmail.com
Corresponding Authors
Ashish Joshi, Ashish Semwal
Available Online 4 November 2025.
DOI
10.2991/978-94-6463-872-1_20How to use a DOI?
Keywords
Cloud Security; Vulnerability Assessment and Penetration Testing (VAPT); Cloud-Hosted Web Applications; Cybersecurity; Hybrid Testing Approaches; Automated Security Tools; Manual Penetration Testing; Cloud-Native Tools; API Security; Container Security; Serverless Architecture; Multi-Cloud Security; GDPR Compliance; AI in Security Testing; Resilience Testing; DevSecOps; Zero Trust Security Model
Abstract

The rapid-growing cloud computing and web-based technologies make the security of cloud-hosted web applications the prime concern for all organizations around the world. Vulnerability Assessment and Penetration Testing is a key methodology for the identification, evaluation, and mitigation of security risks in dynamic cloud environments. This paper will explore the concept of VAPT that includes methodologies and tools used while applying to a cloud-hosted web application. The article would then perform full-fledged literature review summarizing and aggregating key findings within a tabular format that covered critical analysis across tools, datasets, techniques, and efficiency metrics. The surveys reveal trends from the increasing utilization of hybrid methods, the fact that AI in itself is enabling better detection of attacks, as well as enhanced compliance with policies like GDPR. This study, however, puts forward emerging new challenges in secure architecture for serverless, containerized environments, as well as multicloud implementations. The results therefore stress the importance of VAPT in taking cloud-hosted applications to better security posture as cyber threats evolve and advance new frontiers in cloud technologies.

Copyright
© 2025 The Author(s)
Open Access
Open Access This chapter is licensed under the terms of the Creative Commons Attribution-NonCommercial 4.0 International License (http://creativecommons.org/licenses/by-nc/4.0/), which permits any noncommercial use, sharing, adaptation, distribution and reproduction in any medium or format, as long as you give appropriate credit to the original author(s) and the source, provide a link to the Creative Commons license and indicate if changes were made.

Download article (PDF)

<Previous Article In Volume
Next Article In Volume>
Volume Title
Proceedings of the 2nd International Conference on Sustainable Business Practices and Innovative Models (ICSBPIM-2025)
Series
Advances in Economics, Business and Management Research
Publication Date
4 November 2025
ISBN
978-94-6463-872-1
ISSN
2352-5428
DOI
10.2991/978-94-6463-872-1_20How to use a DOI?
Copyright
© 2025 The Author(s)
Open Access
Open Access This chapter is licensed under the terms of the Creative Commons Attribution-NonCommercial 4.0 International License (http://creativecommons.org/licenses/by-nc/4.0/), which permits any noncommercial use, sharing, adaptation, distribution and reproduction in any medium or format, as long as you give appropriate credit to the original author(s) and the source, provide a link to the Creative Commons license and indicate if changes were made.

Cite this article

risenwbib
TY  - CONF
AU  - Ashish Joshi
AU  - Ankur Dumka
AU  - Devesh Pratap Singh
AU  - Ashish Semwal
PY  - 2025
DA  - 2025/11/04
TI  - Comprehensive Survey on Vulnerability Assessment and Penetration Testing (VAPT) for Cloud-Hosted Web Applications
BT  - Proceedings of the 2nd International Conference on Sustainable Business Practices and Innovative Models (ICSBPIM-2025)
PB  - Atlantis Press
SP  - 278
EP  - 296
SN  - 2352-5428
UR  - https://doi.org/10.2991/978-94-6463-872-1_20
DO  - 10.2991/978-94-6463-872-1_20
ID  - Joshi2025
ER  -