Web Application Security by SQL Injection DetectionTools
SQL injection is a type of attack which the attacker adds Structured Query Language code to a web form input box to gain access or make changes to data. SQL injection vulnerability allows an attacker to flow commands directly to a web application underlying database and destroy functionality or confidentiality. Researchers have proposed different tools to detect and prevent this vulnerability. In this paper we present all SQL injection attack types and also current tools which can detect or prevent these attacks. Finally we evaluate these tools.
Keywords: SQL Injection Attack, web application security ,vulnerability, detection, prevention, evaluation
Download Full-Text
ABOUT THE AUTHORS
Atefeh Tajpour
Advanced Informatics School University Technology Malaysia Malaysia
Suhaimi Ibrahim
Advanced Informatics School University Technology Malaysia
Mohammad Sharifi
Advanced Informatics School University Technology Malaysia
Atefeh Tajpour
Advanced Informatics School University Technology Malaysia Malaysia
Suhaimi Ibrahim
Advanced Informatics School University Technology Malaysia
Mohammad Sharifi
Advanced Informatics School University Technology Malaysia