Due to the growing rate of Internet usage, web apps have become the most popular Internet application. This has made web applications a significant objective for cyber-criminals; thereby, carrying various attacks on web applications like Cross-Site Scripting (XSS), Structured Query Language Injection and Shell attacks. Because of the high rate of web-based assault, this paper presents a robust framework for detecting and preventing multiple payload attacks on web applications. In this paper, an RNN model was trained on a dataset that contains different categories of assaults that are carried out on web applications. These attacks include: XSS, SQLi, and Shell. Random Over Sampling approach was used to resolve the problem of highly imbalanced dataset which prepared the dataset for preprocessing. After solving the imbalanced problem, pre-processing was then carried out on the dataset by performing data cleaning and tokenization. The tokenized data was transformed into an array which was used in feeding our RNN model as input. Our proposed model was trained on two (2) epochs, where each of the epochs shows the accuracy and loss values obtained by the model for both training and testing data. After training, our proposed RNN model gave us an accuracy of 99.96% for testing data and 99.91% for training data. We also deployed our RNN model to the web by making use of a python flask to build a robust system for detecting and preventing different payload attacks on web applications. This paper is limited to web-application attacks.
scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.