Analysis of SQL Injection Detection Techniques
Jai Puneet Singh
TL;DR
This paper reviews various SQL Injection attack types and evaluates classical and modern detection and prevention techniques, highlighting the challenges and advancements in securing web applications against these vulnerabilities.
Contribution
It provides an extensive review and comparative analysis of advanced SQL Injection attacks and their detection/prevention methods, including recent approaches.
Findings
Classical methods have limitations in detecting advanced attacks.
Modern approaches improve detection accuracy.
Comparative evaluation highlights strengths and weaknesses of different techniques.
Abstract
SQL Injection is one of the vulnerabilities in OWASPs Top Ten List for Web Based Application Exploitation.These types of attacks takes place on Dynamic Web applications as they interact with the databases for the various operations.Current Content Management System like Drupal, Joomla or Wordpress have all the information stored in their databases. A single intrusion into these types of websites can lead to overall control of websites by the attacker. Researchers are aware of the basic SQL Injection attacks but there are numerous SQL Injection attacks which are yet to be Prevented and Detected. Over here, we present the extensive review for the Advanced SQL Injection attack such as Fast Flux Sql Injection, Compounded SQL Injection and Deep Blind SQL Injection. We also analyze the detection and prevention using the classical methods as well as modern approaches. We will be discussing the…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsWeb Application Security Vulnerabilities · Security and Verification in Computing · Spam and Phishing Detection