MSc Thesis

Ive completed my MSc Thesis!

MSc thesis

I was awarded a grade A (81%) and an MSc with distinction :D

The abstract from my thesis is below:

SQL injection vulnerabilities remain one of the top ten most critical web-application security risks. SQL injection itself is a well understood subject. There are many methods to counteract SQL injection vulnerabilities, yet vulnerabilities still prevail today. This paper evaluates a selection of SQL injection detection tools and open-source web-applications. This paper presents an improvement to a popular open-source tool using techniques identified in the literature to enumerate SQL injection vulnerabilities in URL input parameters. This paper presents results from an experiment comparing the modified and unmodified tool. The design and implementation of an automation tool used to carry out the experiments is also presented. The automation allows for SQL injection detection using multiple tools against multiple open- source platforms.

image