Abstract: SQL injection is the most common attack for web applications and widely used exploit by hackers all over the world. A malicious hacker can do a lot of harm if he wishes to. SQL injection is a security vulnerability that occurs in the database layers of an application. SQL injection is a technique to pass SQL code into interactive web applications that employ in database services. The employment of SQL Injection Attacks, can lead to the leak of confidential information such as credit card numbers, commercial information & table structure. The attackers can get the entire schema of the original database and also corrupt it. In this paper, we have proposed the Detection Model of SQL Injection Vulnerabilities and SQL Injection Mitigation Framework. These approaches are based on SQL Injection grammar to identify the SQL Injection vulnerabilities during software development and SQL Injection Attack on web applications. SQL injection tester will secure web applications from all the above SQL injection attacks. It will test any web application for sql injection attack & will generate the report which will inform the web developer that for which sql injection attacks his web application is vulnerable. In today’s world where security is becoming very critical issue this application is going to be very useful.
Keywords: SQL injection, Vulnerabilities, software development, Framework.
Title: SQL Injection Tester
Author: Kshitij Tambde, Mukesh Bhikane, Dinkar Telap
International Journal of Computer Science and Information Technology Research
ISSN 2348-1196 (print), ISSN 2348-120X (online)
Research Publish Journals
