Prevention and Detection Techniques for SQL Injection Attacks

Raghuvanshi, Kamlesh Kumar; Dixit, Deen Bandhu

doi:10.14445/22312803/ijctt-v12p121

Cited by 2 publications

(3 citation statements)

References 0 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Additionally, implementing the best defensive coding techniques is very challenging and needs special set of skills. Table 1 explains some of the possible SQL injection attacks [12].…”

Section: String Sqlquery = "Select Username Password From Users Where...mentioning

confidence: 99%

See 1 more Smart Citation

Security vulnerabilities related to web-based data

et al. 2019

View full text Add to dashboard Cite

In this digital era, organizations and industries are moving towards replacing websites with web applications for many obvious reasons. With this transition towards web-based applications, organizations and industries find themselves surrounded by several threats and vulnerabilities. One of the largest concerns is keeping their infrastructure safe from attacks and misuse. Web security entails applying a set of procedures and practices, by applying several security principles at various layers to protect web servers, web users, and their surrounding environment. In this paper, we will discuss several attacks that may affect web-based applications namely: SQL injection attacks, cookie poisoning, cross-site scripting, and buffer overflow. Additionally, we will discuss detection and prevention methods from such attacks.

show abstract

“…Additionally, implementing the best defensive coding techniques is very challenging and needs special set of skills. Table 1 explains some of the possible SQL injection attacks [12].…”

Section: String Sqlquery = "Select Username Password From Users Where...mentioning

confidence: 99%

“…This technique blocks unsafe values, which could be harmful to the database server. Such approach can be implemented on either database side (the client's or the server's) [12]. The following are some of the techniques for preventing SQL injection attacks: a. Static Query Statement…”

Section: String Sqlquery = "Select Username Password From Users Where...mentioning

confidence: 99%

Security vulnerabilities related to web-based data

et al. 2019

View full text Add to dashboard Cite

show abstract

“…Raghuvanshi, K. K., & Dixit, D. B. (2014) [9] proposed prevention and detection techniques of SQL injection. The proposed work has done survey on SQL injection, also described different types of SQL injection detection and prevention techniques.…”

Section: Related Workmentioning

confidence: 99%

Web Application Vulnerability Detection Using Hybrid String Matching Algorithm

Kumar¹,

Pujitha²

2018

IJET

View full text Add to dashboard Cite

Application uses URL as contribution for Web Application Vulnerabilities recognition. if the length of URL is too long then it will consume more time to scan the URL (Ain Zubaidah et.al 2014).Existing system can notice the web pages but not overall web application. This application will test for URL of any length using String matching algorithm. To avoid XSS and CSRF and detect attacks that try to sidestep program upheld arrangements by white list and DOM sandboxing techniques (Elias Athanasopoulos et.al.2012). The web application incorporates a rundown of cryptographic hashes of legitimate (trusted) client side contents. In the event that there is a cryptographic hash for the content in the white list. On the off chance that the hash is discovered the content is viewed as trusted or not trusted. This application makes utilization of SHA-1 for making a message process. The web server stores reliable scripts inside div or span HTML components that are attribute as reliable. DOM sandboxing helps in identifying the script or code. Partitioning Program Symbols into Code and Non-code. This helps to identify any hidden code in trusted tag, which bypass web server. Scanning the website for detecting the injection locations and injecting the mischievous XSS assault vectors in such infusion focuses and check for these assaults in the helpless web application ( Shashank Gupta et.al 2015).The proposed application improve the false negative rate.

show abstract

Prevention and Detection Techniques for SQL Injection Attacks

Cited by 2 publications

References 0 publications

Security vulnerabilities related to web-based data

Security vulnerabilities related to web-based data

Web Application Vulnerability Detection Using Hybrid String Matching Algorithm

Contact Info

Product

Resources

About