Simulating SQL-Injection Cyber-Attacks Using GNS3

Al-Mahrouqi, Aadil; Tobin, Patrick C.; Abdalla, Sameh; Kechadi, Tahar

doi:10.7763/ijcte.2016.v8.1046

Cited by 11 publications

(6 citation statements)

References 3 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…In [34], the simulator works as a simulation testbed for several of IPv6 attack scenarios, GNS3 emulates different IOS for Cisco routers in the proposed scenarios. GNS3 is used to simulate an SQL-insertion cyber-attack in [35].…”

Section: B Packet Tracer and Gns3 Evaluationmentioning

confidence: 99%

Experiences on Evaluating Network Simulators: A Methodological Approach

Bakni

Cardinale

Moreno

2019

jcm

View full text Add to dashboard Cite

There exists a variety of network simulators, used to imitate the protocols, nodes, and connections in data networks. They differ in their design, goals, and characteristics. Thus, comparing simulators requires a clear and standardized methodology. In this paper, based on a set of measurable and comparable criteria, we propose an approach to evaluate them. We validate the suggested approach with two network simulators, namely Packet Tracer and GNS3. In that regard, a test scenario is put forward on the two simulators, both in Linux and Windows environments, and their performance is monitored based on the suggested approach. This paper does not propose a method for selecting the best simulator, but it rather supplies the researchers with an evaluation tool, that can be used to describe, compare, and select the most suitable network simulators for a given scenario.

show abstract

Section: B Packet Tracer and Gns3 Evaluationmentioning

confidence: 99%

Experiences on Evaluating Network Simulators: A Methodological Approach

Bakni

Cardinale

Moreno

2019

jcm

View full text Add to dashboard Cite

show abstract

“…This section presents a simulated sandbox that allows us to perform experiment from our real assets and at low cost and risk.We proposed earlier Simulation SQL Injection Cyberattack using GNS3 [23]. Figure 1 shows the simulation of Honeynet Network and SQL injection attack.…”

Section: Case Studymentioning

confidence: 99%

Efficiency of network event logs as admissible digital evidence

Al-Mahrouqi

Abdalla

Kechadi

2015

2015 Science and Information Conference (SAI)

View full text Add to dashboard Cite

“…The simulation approaches also helps to simplify the incidence (1 Image = 1000 words). The current study [17] proposes Investigation learning methodology based on the proposed case study. The learning methodology consists of two stages; stage one is to build a network topology of the proposed case study and stage two is to create a network union Matrix.…”

Section: A Simulating Sql-injection Cyber-attack Using Gns3mentioning

confidence: 99%

“…The authors [17] presented a simulation study network attack scenario. This is the first step towards validating the proposed model.…”

Section: A Simulating Sql-injection Cyber-attack Using Gns3mentioning

confidence: 99%

Cyberspace Forensics Readiness and Security Awareness Model

Al-Mahrouqi¹,

Abdalla²,

Kechadi³

2015

ijacsa

View full text Add to dashboard Cite

Abstract-The goal of reaching a high level of security in wire-less and wired communication networks is continuously proving difficult to achieve. The speed at which both keepers and violators of secure networks are evolving is relatively close. Nowadays, network infrastructures contain a large number of event logs captured by Firewalls and Domain Controllers (DCs). However, these logs are increasingly becoming an obstacle for network administrators in analyzing networks for malicious activities. Forensic investigators mission to detect malicious activities and reconstruct incident scenarios is extremely complex considering the number, as well as the quality of these event logs. This paper presents the building blocks for a model for automated network readiness and awareness. The idea for this model is to utilize the current network security outputs to construct forensically comprehensive evidence. The proposed model covers the three vital phases of the cybercrime management chain, which are: 1) Forensics Readiness, 2) Active Forensics, and 3) Forensics Awareness.

show abstract

Simulating SQL-Injection Cyber-Attacks Using GNS3

Cited by 11 publications

References 3 publications

Experiences on Evaluating Network Simulators: A Methodological Approach

Experiences on Evaluating Network Simulators: A Methodological Approach

Efficiency of network event logs as admissible digital evidence

Cyberspace Forensics Readiness and Security Awareness Model

Contact Info

Product

Resources

About