Introduction We’re going to discuss a dynamic approach to detect an SQL Injection Attack (SQLIA) based on a static pattern matching algorithm. As we know, SQL injection attacks are malicious techniques that target your database using manipulated statements. What the proposed algorithm does is compare SQL statements with prepared static patterns and makes a decision according to the comparison result. In this paper, three basic SQL injection patterns are considered to be detected by the pattern matching algorithm. This algorithm has been implemented with PHP codes. Pattern (String) Matching Algorithms Simply, pattern matching algorithms, in the computer field of study, search shorter strings inside a longer one. There are numerous string-matching algorithms that are looking for the count and place of a given special pattern inside a longer string. For example, we can enumerate Naive Pattern Searching Algorithm (NPSA), Rabin-Karp Algorithm (RKA) and Aho-Corasick String Matching Algorithm (ACSMA); each one....
Read the rest of this story with a free account.
Already have an account? Sign in
- BlogSeptember 23, 2023Leveraging AI in Cybersecurity: Transforming Threat Detection, Prevention, and Beyond
- BlogAugust 24, 2023How Simply Browsing The Internet Gives Scammers An Advantage – And What You Can Do About It
- BlogJuly 1, 2022WEF - WiFi Exploitation Framework
- BlogMay 19, 2022Osmedeus is a Workflow Engine for Offensive Security