UUM ETD | Universiti Utara Malaysian Electronic Theses and Dissertation
FAQs | Feedback | Search Tips | Sitemap

SQL-Injection Vulnerability Scanner Using Automatic Creation of SQL-Injection Attacks (MySqlinjector)

Shakhatreh, Ala' Yaseen Ibrahim (2010) SQL-Injection Vulnerability Scanner Using Automatic Creation of SQL-Injection Attacks (MySqlinjector). Masters thesis, Universiti Utara Malaysia.

[img] PDF
Ala'_Yaseen_Ibrahim_Shakhatreh.pdf
Restricted to Registered users only

Download (1MB)
[img]
Preview
PDF
1.Ala'_Yaseen_Ibrahim_Shakhatreh.pdf

Download (147kB) | Preview

Abstract

Securing the web against frequent cyber attacks is a big concern, attackers usually intend to snitch private info, deface, and damage websites, to prove their identities, this kind of vandalism may drive many corporations which conduct their business through the web to fall down. One of the most dangerous cyber attacks is SQL-injection attack, this kind of attack can be launched through the web browsers. The vulnerability of SQL injection can be resulted from inappropriate programming practice, which leaves a lot of doors wide opened to the attackers to exploit them, and to gain the access to confidential info. In order to get rid of this vulnerability, it is feasible to detect it and enhance the coding structure of the system to avoid being an easy victim to this kind of cyber attacks, this kind of detection requires a powerful tool that can automatically create SQL-injection attacks using efficient features to detect the vulnerability. This study introduces a new web scanning tool (MySqlInjector) with enhanced features that will be able to conduct efficient penetration test on PHP based websites to detect SQL injection vulnerabilities. This tool will automate the penetration test process, to make it easy even for those who are not aware about hacking techniques.

Item Type: Thesis (Masters)
Uncontrolled Keywords: Network Security, Web Scanning Tool, SQL Injection
Subjects: Q Science > QA Mathematics > QA71-90 Instruments and machines
Divisions: College of Arts and Sciences (CAS)
Depositing User: Mr Husni Ismail
Date Deposited: 18 Oct 2010 10:37
Last Modified: 24 Jul 2013 12:14
URI: http://etd.uum.edu.my/id/eprint/2141

Actions (login required)

View Item View Item