English
Related papers

Related papers: Intrusion Detection Framework for SQL Injection

200 papers

The goal of an Intrusion Detection is inadequate to detect errors and unusual activity on a network or on the hosts belonging to a local network by monitoring network activity. Algorithms for building detection models are broadly classified…

Networking and Internet Architecture · Computer Science 2010-10-28 M. Sadiq Ali Khan

Web applications are becoming an essential part of our everyday lives. Many of our activities are dependent on the functionality and security of these applications. As the scale of these applications grows, injection vulnerabilities such as…

Software Engineering · Computer Science 2010-09-21 Raymond Mui , Phyllis Frankl

Intrusion Detection is one of major threats for organization. The approach of intrusion detection using text processing has been one of research interests which is gaining significant importance from researchers. In text mining based…

Cryptography and Security · Computer Science 2016-03-15 Gunupudi RajeshKumar , N Mangathayaru , G Narsimha

This paper describes an advanced SQL injection technique where DNS resolution process is exploited for retrieval of malicious SQL query results. Resulting DNS requests are intercepted by attackers themselves at the controlled remote name…

Cryptography and Security · Computer Science 2013-03-14 Miroslav Stampar

Application of deep learning to enhance the accuracy of intrusion detection in modern computer networks were studied in this paper. The identification of attacks in computer networks is divided in to two categories of intrusion detection…

Cryptography and Security · Computer Science 2020-12-16 Jafar Majidpour , Hiwa Hasanzadeh

This paper proposes a novel visual model for web applications security monitoring. Although an automated intrusion detection system can shield a web application from common attacks, it usually cannot detect more complicated break-ins. So, a…

Cryptography and Security · Computer Science 2019-04-09 Tran Tri Dang , Tran Khanh Dang

NoSQL data storage systems have become very popular due to their scalability and ease of use. This paper examines the maturity of security measures for NoSQL databases, addressing their new query and access mechanisms. For example the…

Cryptography and Security · Computer Science 2015-06-15 Aviv Ron , Alexandra Shulman-Peleg , Emanuel Bronshtein

In the digital age, users store personal data in corporate databases, making data security central to enterprise management. Given the extensive attack surface, assets face challenges like weak authentication, vulnerabilities, and malware.…

Cryptography and Security · Computer Science 2024-11-12 Zilin Huang , Xiulai Li , Xinyi Cao , Ke Chen , Longjuan Wang , Logan Bo-Yee Liu

In the era of the Internet of Things (IoT) and data sharing, users frequently upload their personal information to enterprise databases to enjoy enhanced service experiences provided by various online services. However, the widespread…

Cryptography and Security · Computer Science 2024-11-05 Zilin Huang , Xiangyan Tang , Hongyu Li , Xinyi Cao , Jieren Cheng

Insider threats represent one of the most critical challenges in modern cybersecurity. These threats arise from individuals within an organization who misuse their legitimate access to harm the organization's assets, data, or operations.…

Cryptography and Security · Computer Science 2025-05-22 Anas Ali , Mubashar Husain , Peter Hans

Large language models (LLMs) have shown state-of-the-art results in translating natural language questions into SQL queries (Text-to-SQL), a long-standing challenge within the database community. However, security concerns remain largely…

Cryptography and Security · Computer Science 2025-09-09 Meiyu Lin , Haichuan Zhang , Jiale Lao , Renyuan Li , Yuanchun Zhou , Carl Yang , Yang Cao , Mingjie Tang

In this paper, we propose a formalization of the process of exploitation of SQL injection vulnerabilities. We consider a simplification of the dynamics of SQL injection attacks by casting this problem as a security capture-the-flag…

Cryptography and Security · Computer Science 2021-05-25 Laszlo Erdodi , Åvald Åslaugson Sommervoll , Fabio Massimo Zennaro

Distributed intrustion detection systems detect attacks on computer systems by analyzing data aggregated from distributed sources. The distributed nature of the data sources allows patterns in the data to be seen that might not be…

Cryptography and Security · Computer Science 2007-05-23 Michael Treaster

In recent years, the attack which leverages register information (e.g. accounts and passwords) leaked from 3rd party applications to try other applications is popular and serious. We call this attack "database collision". Traditionally,…

Cryptography and Security · Computer Science 2022-06-27 Bo Zhao , Yu Zhou

An intrusion detection system framework using mobile agents is a layered framework mechanism designed to support heterogeneous network environments to identify intruders at its best. Traditional computer misuse detection techniques can…

Networking and Internet Architecture · Computer Science 2010-07-15 N. Jaisankar , R. Saravanan , K. Durai Swamy

Insider Attack Detection in commercial networks is a critical problem that does not have any good solutions at this current time. The problem is challenging due to the lack of visibility into live networks and a lack of a standard feature…

Cryptography and Security · Computer Science 2020-10-30 Yash Samtani , Jesse Elwell

We present a formal approach that exploits attacks related to SQL Injection (SQLi) searching for security flaws in a web application. We give a formal representation of web applications and databases, and show that our formalization…

Cryptography and Security · Computer Science 2016-08-11 Federico De Meo , Marco Rocchetto , Luca Viganò

Text-to-SQL systems empower users to interact with databases using natural language, automatically translating queries into executable SQL code. However, their reliance on database schema information for SQL generation exposes them to…

Computation and Language · Computer Science 2025-06-04 Đorđe Klisura , Anthony Rios

Machine learning and data mining algorithms play important roles in designing intrusion detection systems. Based on their approaches toward the detection of attacks in a network, intrusion detection systems can be broadly categorized into…

Cryptography and Security · Computer Science 2020-09-16 Jaydip Sen , Sidra Mehtab

A large number of web applications is based on a relational database together with a program, typically a script, that enables the user to interact with the database through embedded SQL queries and commands. In this paper, we introduce a…

Logic in Computer Science · Computer Science 2016-10-10 Shachar Itzhaky , Tomer Kotek , Noam Rinetzky , Mooly Sagiv , Orr Tamir , Helmut Veith , Florian Zuleger