Detection of SQL Injection and Cross-site Scripting Attacks
Popularity Report
 |
|||
|
|||
|
|||
|
|||
|
|||
|
Rank
URL Tag Cloud
- security
- , development
- , sql
- , tipps
- , xss
- , detection
- , ids
- , pentest
- , sqlinjection
- , exploits
- , infosec
- , pcre
- , security_testing
- , snort
- , regex
- , injection
- , web
- , Internet
- , Programming
- , Explorer
Bookmark History
Saved by 7 people (-1 private), first by anonymouse user on 2006-08-07
- Matssvensson on 2009-02-12 - Tags From , Internet , Explorer , New , links
- Cnaunton on 2008-07-08 - Tags Programming , Security
- Rraghur on 2007-09-11 - Tags security_testing , xss
- Toobias on 2007-01-15 - Tags sql , security , tipps , Development , furl
- Svanzoest on 2006-09-20 - Tags sql , injection , web , development , security , detection , regex , ids , snort , pcre
Public Sticky notes
f a site is vulnerable to CSS. These attempts can be trivially detected. However, the advanced attacker may attempt to camouflage the entire string by entering its Hex equivalents. So the <script> tag would appear as %3C%73%63%72%69%70%74%3E. On the other hand, the attacker may actually use a Web Application Proxy like Achilles and reverse the browser's automatic conversion of special characters such as < to %3C and > to %3E. So the attack URL will contain the angled brackets instead of their hex equivalents as would otherwise normally occur.
The following regular expression checks for attacks that may contain HTML opening tags and closing tags <> with any text inside. It will catch attempts to use <b> or <u
Highlighted by rraghur
Public Comment