Design and Implementation of an Automatic Scanning Tool of SQL Injection Vulnerability Based on Web Crawler

机译：基于Web履带的SQL注射漏洞自动扫描工具的设计与实现

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

An automatic detection tool for SQL injection vulnerability based on web crawler is designed and implemented. By studying the characteristics of various web application vulnerabilities, the causes and detection methods of SQL injection vulnerabilities are analyzed in detail. In addition, functions such as URL (Uniform Resource Locator) optimization and similarity determination are added to each module's characteristics, so that the vulnerabilities can be scanned more accurately and quickly. The tool can automatically explore the target based on web crawler framework. After testing, it is proved that the scanning tool can effectively detect potential SQL injection security vulnerabilities in a website.

机译：设计并实施了基于Web履带器的SQL注射漏洞的自动检测工具。通过研究各种Web应用程序漏洞的特征，详细分析了SQL注射漏洞的原因和检测方法。另外，诸如URL（统一资源定位器）优化和相似性确定的功能被添加到每个模块的特征，从而可以更准确且快速地扫描漏洞。该工具可以根据Web爬网框架自动探索目标。测试后，证明扫描工具可以有效地检测网站中的潜在的SQL注入安全漏洞。

著录项

来源
《International Conference on Security with Intelligent Computing and Big-data Services》|2020年|xvii 928 p. :|共8页
会议地点
作者
Xiaochun Lei; Jiashi Qu; Gang Yao; Junyan Chen; Xin Shen;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类 TP393-532;
关键词
Web crawler; SQL injection; Automatic scanning;

机译：Web履带;SQL注射;自动扫描;
入库时间 2022-08-21 00:03:33

相似文献

外文文献
中文文献
专利

1. SQL-injection vulnerability scanning tool for automatic creation of SQL-injection attacks [J] . Abdul Bashah Mat Ali, Ala’ Yaseen Ibrahim Shakhatreh, Mohd Syazwan Abdullah, Procedia Computer Science . 2011,第1期

机译：SQL注入漏洞扫描工具，用于自动创建SQL注入攻击
2. Design and implementation of web-based database of rapeseed-mustard germplasm using Linux - Apache - MySQL - PHP (LAMP) technology [J] . Vinod Kumar, K. H. Singh, K. K. Chaturvedi, African Journal of Agricultural Research . 2013,第22期

机译：使用Linux设计和实现基于Web的油菜-芥菜种质数据库-Apache-MySQL-PHP（LAMP）技术
3. Design and Implementation of Web-Based Paddy Crop Management System Based on Open Source Tools and Web Service Technologies [J] . Sohailah Safie, Mohamad Fairol Zamzuri Che Sayuti, Rubiyah Yusof Advanced Science Letters . 2014,第10a12期

机译：基于开源工具和Web服务技术的基于Web的稻谷作物管理系统的设计与实现
4. Design and Implementation of an Automatic Scanning Tool of SQL Injection Vulnerability Based on Web Crawler [C] . Xiaochun Lei, Jiashi Qu, Gang Yao, International Conference on Security with Intelligent Computing and Big-data Services . 2020

机译：基于Web履带的SQL注射漏洞自动扫描工具的设计与实现
5. Design and implementation of a tool to support Web-based dynamic composition of software component. [D] . Wong, Raymond Wai-Man. 2001

机译：设计和实现一种工具，以支持基于Web的软件组件的动态组合。
6. Design and implementation of World Wide Web-based tools for image management in computed tomography magnetic resonance imaging and ultrasonography [O] . Christopher J. Henri, Richard K. Rubin, Robert D. Cox, 1997

机译：基于万维网的工具的设计和实现用于在计算机断层扫描磁共振成像和超声检查中进行图像管理
7. SQL-injection vulnerability scanning tool for automatic creation of SQL-injection attacks [O] . Mat Ali, Abdul Bashah, Shakhatreh, Yaseen Ibrahim Ala’, Mohd Abdullah, Syazwan, 2011

机译：用于自动创建SQL注入攻击的SQL注入漏洞扫描工具

Design and Implementation of an Automatic Scanning Tool of SQL Injection Vulnerability Based on Web Crawler

摘要

著录项

相似文献

相关主题

期刊订阅