Surgical Striking SQL Injection Attacks Using LSTM

Abstract: When a software program or website employs SQL databases such as Oracle, SQL Server, or MySQL, a SQL injection attack is possible. Phishers utilize SQL injection attacks to infiltrate confidential corporate and personal information, increasing the risk of compromise. If a SQL injection exploit is successful, it can be used to read and alter database data (e.g., insert, update, or delete), perform database administration operations, retrieve the data of a database management system file, also issue commands to … Show more

“…It becomes an anomalous query by adding the statement 'OR '1' = '1';' to the SQL query. This causes the table fields to always evaluate to true, resulting in data being returned from the table, regardless of the actual conditions [14,15]. This injection attempts to execute two SQL queries at the same time, the first closes prematurely and the second selects all records in the users table, potentially revealing sensitive information.…”

Detecting Structured Query Language Injections in Web Microservices Using Machine Learning

“…It becomes an anomalous query by adding the statement 'OR '1' = '1';' to the SQL query. This causes the table fields to always evaluate to true, resulting in data being returned from the table, regardless of the actual conditions [14,15]. This injection attempts to execute two SQL queries at the same time, the first closes prematurely and the second selects all records in the users table, potentially revealing sensitive information.…”

Detecting Structured Query Language Injections in Web Microservices Using Machine Learning