Sql Injection Attacks: Techniques and Protection Mechanisms

In: Computers and Technology

Submitted By interactiv3
Words 1951
Pages 8
Nikita Patel et al. / International Journal on Computer Science and Engineering (IJCSE)

SQL Injection Attacks: Techniques and Protection Mechanisms
Nikita Patel
Department of Info. Tech. Patel College of Science & Technology Bhopal, India

Fahim Mohammed
Department of Computer Science Research Scholar NIT Bhopal, India

Santosh Soni
Department of Computer Science Patel College of Science & Technology Bhopal, India

Abstract-- When an internet user interacts in web environment by surfing the Net, sending electronic mail messages and participating in online forums lot of data is generated which may have user’s private information. If this information is captured by third party tools and techniques; it may cause a breach in end user privacy. In the Web environment, end user privacy is one of the most controversial legal issues. In this paper issues related to information leakage through SQL injection attacks are presented and protection mechanisms are also discussed. Keywords: - Privacy, Security, Code Injection, SQL Injection, web application security, Malicious Code, Vulnerability. I. INTRODUCTION

As the Internet is growing day by day, most of the people are not aware of security and privacy. Internet is a widespread information infrastructure; it is basically an insecure channel for exchanging information. Web security is the set of rules and measures taken against web security threats. Web privacy is the ability of hiding end user’s information. Nowadays most of the applications have the vulnerability (weakness) that makes a threat possible. An attack may be possible due to poor design, configuration mistakes, or poor written code of the web application. A threat can be harmful for database, control of web application, and other components of web application, that are needed to be protected from all types of threat. All types…...

Similar Documents

Web Server Application Attacks

...Application Attacks Web Server Application Attacks Assignment # 1 Mariz Cebron Common web application vulnerabilities and attacks, and recommend mitigation strategies The World Wide Web has evolved into a critical delivery pipeline for institutions to interact with customers, partners and employees. Via browsers, people use web sites to send and receive information via Hypertext Markup Language (HTML) messages to web applications housed on web servers. This information, expected as legitimate messages, can be used illegitimately in unauthorized ways to compromise security vulnerabilities a.) Authentication - one of the biggest web application weaknesses is the failure to provide a means of strong authentication to verify the end user is whom he/she claims. Prior to accessing a web application, a server may require the end user to authenticate him/herself to identify the user or determine the user's access privileges. To mitigate these risks; employ strong authentication, such as HTTPS, with encrypted credentials, require authentication at specified time intervals or movement between web pages, regularly test authentication and implement authorization. b.) SQL injection - Many web applications do not properly strip user input of unnecessary special characters or validate information contained in a web request before using that input directly in SQL queries. SQL injection is an attack......

Words: 1656 - Pages: 7

Hormonal Injections

... (HORMONAL INJECTIONS) Leader: Leonard T. Gultiano Members: Gail Joanne Dela Cruz Anjo Avila Miko Itable John Paulo Bulaong Rizaldy Amponin Jr. Depo-Provera® Hormonal Injections   What are Depo-Provera® hormonal injections? Depo-Provera® is a female hormonal method of birth control. It's very effective in preventing pregnancy. Depo-Provera® contains a synthetic (man-made) form of the hormone progesterone, called depot medroxyprogesterone acetate (DMPA). The Depo-Provera® injection gives 3 months protection against pregnancy. You should get one injection every 3 months (13 weeks) to get the best protection against pregnancy. It's safe to get your injection up to 2 weeks early if your 3-month appointment date does not fit into your schedule. Out of 100 women using Depo-Provera® Typical use: 6 women become pregnant Perfect use: 1 or fewer women become pregnant Remember * The Depo-Provera® shot is very effective in prevents pregnancy. * It is important to get your shot every 13 weeks (3 months). * Periods can be heavier initially, and then lighter, or absent while on Depo-Provera®. Questions: 1. When do Depo-Provera® hormonal injections start to work? Most girls get their first Depo-Provera® injection during the first five days of a normal menstrual period. You are then protected from pregnancy right after you get the injection. Another way to start Depo-Provera® is “Quick start” – you get the first injection when you......

Words: 1244 - Pages: 5

Web Server Application Attacks

...Web Server Application Attacks Christopher Jones Theories of Security Management Dr. Alaba Oluyomi Most web attacks are executed by several different methods to interrupt the functions of web servers. Web applications incorporate several applications to make it work properly. The web administrator must monitor the databases, extended markup languages, and script interpreters to stay ahead of hackers. All website that are running on a web server are prone to compromise, even though they are coded. Attackers take advantage of vulnerabilities of the web server. Attacker takes advantage of vulnerabilities within the implementation of TCP/IP protocol suites. With the slow reactions to correct these deficiencies, attackers are shifting to the application layers and mainly the web. This is in part caused by most companies open their firewall systems to web traffic. Most of the attacks are broad, and comes in many versions that fall into similar categories. Companies are making their web servers more secure, so attacks are moving to the vulnerability of web application flaws. Below are types of attacks on a web server 1 Web application vulnerabilities can be categorized as follows; Web server vulnerabilities, Manipulation of URLs, Exploitation of weaknesses in session identifiers and authentication systems, HTML code Injection and Cross-Site Scripting, and SQL Injection. SQL injection is a technique often used to attack data driven applications. This is......

Words: 1565 - Pages: 7

Sql Injection Methodology

...SQL Injection - Extracting database data from the page content up vote 4 down vote favorite I have a question I am hoping someone could help with.. I am in the process of writing an SQL Injection tool from scratch (I am aware there are already excellent tools out there such as SQL Map, but this one has to be written from scratch). The problem I am having: When manually performing SQL injection to determine tables names or column names and so on using strings such as: www.vulnerable site.net/articles.php?id =-1 union select 1,2,group_concat(column_name),4 from information_schema.columns -- or www.vulnarable site.net/articles.php?id =-1 union select 1,2,table_name,4 from information_schema.tables -- it is easy to determine the table names/column names as you can simply look at the page and read the column names that are returned in the page content. But how can this be done in an automated way? Doing this in an automated fashion is a lot harder though because how does the tool know what on the page that is returned when the sql injection is executed are table names/column names? What would be the most reliable way to do this so the tool knows what parts of the page content to extract because they are table names/column names? for example... could I parse/search the page content for strings seperated by commas to get the table and column names that are output by the injection? Is there better more reliable ways to do it? your help with......

Words: 940 - Pages: 4

Ddos Attack

...against DDOS attack in Wireless Mobile Ad-hoc Network Abstract: Wireless Mobile ad-hoc network (MANET) is an emerging technology and have great strength to be applied in critical situations like battlefields and commercial applications such as building, traffic surveillance, MANET is infrastructure less, with no any centralized controller exist and also each node contain routing capability, Each device in a MANET is independently free to move in any direction, and will therefore change its connections to other devices frequently. So one of the major challenges wireless mobile ad-hoc networks face today is security, because no central controller exists. MANETs are a kind of wireless ad hoc networks that usually has a routable networking environment on top of a link layer ad hoc network. Ad hoc also contains wireless sensor network so the problems is facing b y sensor network is also faced by MANET. While developing the sensor nodes in unattended environment increases the chances of various attacks. There are many security attacks in MANET and DDoS (Distributed denial of service) is one of them. Our main aim is seeing the effect of DDoS in routing load, packet drop rate, end to end delay, i.e. Maximizing due to attack on network. And with these parameters and many more also we build secure IDS to detect this kind of attack and ......

Words: 5918 - Pages: 24

A Survey of Sql Injection Defense Mechanisms

...A Survey of SQL Injection Defense Mechanisms Kasra Amirtahmasebi, Seyed Reza Jalalinia and Saghar Khadem Chalmers University of Technology, Sweden akasra, seyedj, saghar{@student.chalmers.se} Abstract SQL Injection Attack (SQLIA) is a prevalent method which makes it possible for the attackers to gain direct access to the database and culminates in extracting sensitive information from the firm’s database. In this survey, we have presented and analyzed six different SQL Injection prevention techniques which can be used for securing the data storage over the Internet. The survey starts by presenting Variable Normalization and will continue with AMNESIA, Prepared statements, SQL DOM, SQLrand and SQLIA prevention in stored procedures respectively. that determining whether a SQL statement is allowable or not is done by checking the existence of normalized statement in the ready-sorted allowable list. 2.1. Background Many web pages ask users to input some data and make a SQL queries to the database based on the information received from the user i.e. username and passwords. By sending crafted input a malicious user can change the SQL statement structure and execute arbitrary SQL commands on the vulnerable system. Consider the following username and password example, in order to login to the web site, the user inputs his username and password, by clicking on the submit button the following SQL query is generated: SELECT * FROM user_table WHERE user_id = ‘john’ and......

Words: 5643 - Pages: 23

Sql Injection Methodology

...SQL INJECION - TIPS & TRICKS - METHODOLOGIES ############################ # What you should look for # ############################ Try to look for pages that allow you to submit data (i.e: login page, search page, feedback, etc). Sometimes, HTML pages will use the POST command to send parameters to another ASP page. Therefore, you may not see the parameters in the URL. However, you can check the source code of the HTML, and look for "FORM" tag in the HTML code. You may find something like this in some HTML codes: <FORM action=Search/search.asp method=post> <input type=hidden name=A value=C> </FORM> Everything between the <FORM> and </FORM> have potential parameters that might be useful (exploit wise). ##################################################### # What if you can't find any page that takes input? # ##################################################### You should look for pages like ASP, JSP, CGI, or PHP web pages. Try to look especially for URL that takes parameters, like: http://[site.com]/page.asp?id=10 ######################################## # How do you test if it is vulnerable? # ######################################## Start with a single quote trick. Input something like: hi' or 1=1-- Into login, or password, or even in the URL. Example: - Login: hi' or 1=1-- - Pass: hi' or 1=1-- or - http://[site.com]/page.asp?id=hi' or 1=1-- If you must do this with a hidden field, just...

Words: 4826 - Pages: 20

Web Application Attack Scenario

...Assignment 1: Web Application Attack Scenario (Student’s Name) (Professor’s Name) (Course Title) (Date of Submission) Introduction Web applications are nowadays serving as a company’s public face to the internet. This has created the need to identify threats and attacks directed to data servers and web applications. Hackers exploit vulnerabilities in input validation and authentication affecting the web application in order to gain illegal access and disclose sensitive data or manipulate it to their benefits. Common threats to data systems Data systems such as the web application and data servers are faced by a number of threats, some of these threats are discussed below: Spoofing: this is a situation where computer assume the identity of another and masquerading where a user assumes to be another (Cross, 2007). If the attacker manages to get high privileges, he can use this to attack the web system to insert or change the data, denial of service, or even damage the system. Scavenging: This is a threat presented by examining available data form accessible sources such as waste, network and search engines. Scavenging might identify the actual information needed by the hacker but in most cases, it is used as a way to select other threats for vulnerabilities that are well established for web systems attack. The information gathered through scavenging include, server software, type of operating system firewall and the application software. This risk highly lies at the......

Words: 1087 - Pages: 5

Sql Injection

...-= What is SQLi? =- SQL Injection (aka Sql Injection or Structured Query Language Injection) Is the first step in the entry to exploiting or hacking websites.  It is easily done and it is a great starting off point.  SQLi is just basically injecting queries into a database or using queries to get authorization bypass as an admin. -= PART ONE : WEBSITE ASSESSMENT =- Bago tayo mag-simula na iexploit ang website... Dapat alam natin exactly what we are injecting into... Ito ang cover ng Part One para kolektain ang lahat ng inpormasyon sa site... -= SECTION ONE : PAGHANAP NG VULNERABLE WEBSITE =- Paghahanap ng mga vulnerable site... Kailangan gumamit ng "dorks"... Na ilalagay lang sa Google or pwede rin gumamit ng Exploit Scanner... Para sa mga hindi pa familiar sa dorks... DORKS - ay URL's ng website that are known to be vulnerable... Sa SQL Injection ganito ang sample ng mga......

Words: 1351 - Pages: 6

Recent Cyber-Attack and Mitigation Techniques

...Recent cyber-attack and mitigation techniques ISSC 361 American Public University System April 9, 2016 Computer-based attacks have been going on the around the world. Individuals or governments hacking into individuals or rival governments systems. Private corporations are hacking each other in the quest of power. They have been several recent computer-based attacks that every information security expert should be aware of. This short paper will discuss one of these recent attacks, which provoked a collective blackout, the Cyber-Attack Against Ukrainian Critical Infrastructure and present an overview of some mitigation techniques. The Cyber-Attack Against Ukrainian Critical Infrastructure was conducted using a malware called BlackEnergy. This attack targeted six Ukrainian energy organizations was perpetrated by attacker from outside the organizations. This attack has had effect on about 225000 customers of Ukrainian regional electric power distribution companies (Lee 2016). The intruders organized the attack by conducting a recognition of the network of the victim. The attacks took place with an interval of 30 minutes from each other affecting many central and regional installations (Vicinanzo 2016). The attackers, controlled the breakers from distance by using distance control administration tools already in place on the operating system or “distance industrial control system (ICS) client software through virtual private network (VPN)” after gaining rightful access to...

Words: 893 - Pages: 4

No Sql Databases

...particular NoSQL solution on the above mentioned factors. 1. Introduction Until recently, Relational database systems have been on the forefront of data storage and management operations. The advent of mobile applications that requires real time analysis like GPS based services, banking and social media has led to huge unstructured data being produced every second. Traditional RDBMS systems have found it difficult to cater to these huge chunks of unstructured data, as RDBMS mainly stores structured data in tabular format. Also, the unstructured data being mapped to a relational database results in increase in complexity as it uses expensive infrastructure to model the same. Also, even if the data model fits into SQL, platter of features provided by SQL becomes an overhead. Relational schema becomes a burden on applications which are trying to store data in multiple forms like videos, blogs and images etc. A new methodology for data management was introduced for the management of unstructured data known as NoSQL (Not Only Structured Query Language). NoSQL covers a broader topic of data structuring, storage and aggregation via various implementation approaches. It can store unstructured data and provide real time analysis to back up the web service applications. It gives up on conventional benchmarking of database management principles like Atomicity, Consistency, Isolation and Durability, to attain flexible data handling. Also, it provides inbuilt data......

Words: 4246 - Pages: 17

Sql Injection Attack

...TẤN CÔNG KIỂU SQL INJECTION TÁC HẠI VÀ PHÒNG TRÁNH Lê Đình Duy Khoa Công Nghệ Thông Tin, Trường ĐH Khoa Học Tự Nhiên Tp. HCM. Email: ldduy@fit.hcmuns.edu.vn 1. SQL Injection là gì? Khi triển khai các ứng dụng web trên Internet, nhiều người vẫn nghĩ rằng việc đảm bảo an toàn, bảo mật nhằm giảm thiểu tối đa khả năng bị tấn công từ các tin tặc chỉ đơn thuần tập trung vào các vấn đề như chọn hệ điều hành, hệ quản trị cơ sở dữ liệu, webserver sẽ chạy ứng dụng, ... mà quên mất rằng ngay cả bản thân ứng dụng chạy trên đó cũng tiềm ẩn một lỗ hổng bảo mật rất lớn. Một trong số các lỗ hổng này đó là SQL injection. Tại Việt Nam, đã qua thời kì các quản trị website lơ là việc quét virus, cập nhật các bản vá lỗi từ các phần mềm hệ thống, nhưng việc chăm sóc các lỗi của các ứng dụng lại rất ít được quan tâm. Đó là lí do tại sao trong thời gian vừa qua, không ít website tại Việt Nam bị tấn công và đa số đều là lỗi SQL injection [1]. Vậy SQL injection là gì ? SQL injection là một kĩ thuật cho phép những kẻ tấn công lợi dụng lỗ hổng trong việc kiểm tra dữ liệu nhập trong các ứng dụng web và các thông báo lỗi của hệ quản trị cơ sở dữ liệu để "tiêm vào" (inject) và thi hành các câu lệnh SQL bất hợp pháp (không được người phát triển ứng dụng lường trước). Hậu quả của nó rất tai hại vì nó cho phép những kẻ tấn công có thể thực hiện các thao tác xóa, hiệu chỉnh, … do có toàn quyền trên cơ sở dữ liệu của ứng dụng, thậm chí là server mà ứng dụng đó đang chạy. Lỗi này thường xảy ra trên các......

Words: 2132 - Pages: 9

Sql Injection.

...due to a SQL injection flaw in a web application that communicate with a database. Over ten years have passed since a famous hacker coined the term “SQL injection” and it is still considered one of the major application threats. A lot has been said on this vulnerability, but not all of the aspects and implications have been uncovered, yet. This paper aim is to collate some of the existing knowledge, introduce new techniques and demonstrate how to get complete control over the database management system's underlying operating system, file system and internal network through SQL injection vulnerability in over-looked and theoretically not exploitable scenarios. This paper also discuss about the prevention from the SQL Injection, not only in ORACLE but also in PHP, C#, JAVA and other languages. INDEX ABSTRACT………………………………………………………………………………….....02 INTRODUCTION……………….…………………………….…….………………………….04 BLIND SQL INJECTION…………………………………….………………………………..05 SQL INJECTION OVERVIEW…………………………….………………………………....06 CATEGORIES OF SQL INJECTION ATTACKS…………………………………………..07 WHAT’S VULNERABLE…………………………………………………………..…………08 WHAT’S NOT VULNERABLE…………………………………………………….………….08 SQL INJECTION METHODS……………………………………….……………….……….09 SQL MANIPULATION………………………………………………………..……………….09 CODE INJECTION……………………………………………………….……………………10 FUNCTION CALL INJECTION……………………………………………………………….11 BUFFER OVERFLOWS………………………………………………………………………13 SQL INJECTION TESTING METHODOLOGY………………………………………….....14 PREVENTING SQL......

Words: 3449 - Pages: 14

Sql Injection

...SQL injection attacks pose a serious security threat to Web applications or any database-driven site: they allow attackers to obtain unrestricted access to the databases underlying the applications and to the potentially sensitive information these databases contain.These applications accept user inputs and use them to form SQL statements at runtime. During an SQL injection attack, an attacker might provide malicious SQL query segments as user input which could result in a different database request. By using SQL injection attacks, an attacker could thus obtain and/or modify confidential/sensitive information. An attacker could even use a SQL injection vulnerability as a rudimentary IP/Port scanner of the internal corporate network. Several papers in literature have proposed ways to prevent SQL injection attacks in the application layer by examining dynamic SQL query semantics at runtime. Although researchers and practitioners have proposed various methods to address the SQL injection problem, current approaches either fail to address the full scope of the problem or have limitations that prevent their use and adoption. Despite these risks an incredible number of systems on the internet are still susceptible to this form of attack.Many researchers and practitioners are familiar with only a subset of the wide range of techniques available to attackers who are trying to take advantage of SQL injection vulnerabilities. As a consequence, many solutions proposed in the literature......

Words: 363 - Pages: 2

Attacks on Us Websites

...Web based Attacks on U.S. government websites Web attacks mainly refers to the hostile actions taken by cyber criminals in an attempt to infiltrate different web based public and private installations including websites, personal computers, private mailing addresses, various private and public networks and highly sophisticated instruments that are controlled through the use of internet. Web attacks will be launched by an individual or a group of people who are highly knowledgeable about the use of internet and the online security system. In some cases web attacks are launched simply to fulfill petty interests such as to hack into someone’s personal information, credit card information etc. While in some cases more serious agendas work as major catalysts that leads to more sophisticated web attacks which may take place in a domestic or even international level. For instance, in several occasions, Chinese and North Korean hackers were accused of hacking into U.S. government websites to steal sensitive information. And thus the concept of “cyber war” made its debut. The emergence of World Wide Web has started a revolution throughout the globe as far as information technology (IT) is taken under consideration. The use of internet has left significant impact on our personal, social, national and global orientation. As a part of the process, the United States government has also taken steps to make a strong presence in the online world through the launch of various......

Words: 1868 - Pages: 8

Smart Gear (332) | Usługi internetowe | http://muufcore.com/23237/neil-halstead-spin-the-bottle-2013