Defending Against Injection Attacks Through Context-Sensitive String Evaluation

300 word summary: What is the paper about? Defending Against Injection Attacks Through Context-Sensitive String Evaluation introduces CSSE - Context-Sensitive String Evaluation - a way to detect sqlI in php at…

Continue ReadingDefending Against Injection Attacks Through Context-Sensitive String Evaluation

AMNESIA: Analysis and Monitoring for NEutralizing SQL-Injection Attacks

300 word summary: AMNESIA: analysis and monitoring for NEutralizing SQL-injection attacks. Provides a valuable background section on the countermeasures for SQL injection attacks: Defensive ProgrammingGeneral Techniques against SQLiStatic Analysis techniques…

Continue ReadingAMNESIA: Analysis and Monitoring for NEutralizing SQL-Injection Attacks