| Title | A Novel System for Detecting and Preventing SQL Injection and Cross-Site-Script |
| Publication Type | Conference Paper |
| Year of Publication | 2021 |
| Authors | Tanakas, Petros, Ilias, Aristidis, Polemi, Nineta |
| Conference Name | 2021 International Conference on Electrical, Computer and Energy Technologies (ICECET) |
| Date Published | dec |
| Keywords | Computer hacking, Cross Site Script, Cross Site Scripting, cross-site scripting, Firewalls (computing), Human Behavior, Intrusion detection, Intrusion Prevention System (IPS), IP networks, Network Intrusion Detection System (NIDS), Protocols, pubcrawl, Resiliency, Reverse Proxy, Scalability, SQL Injection |
| Abstract | SQL Injection and Cross-Site Scripting are the two most common attacks in database-based web applications. In this paper we propose a system to detect different types of SQL injection and XSS attacks associated with a web application, without the existence of any firewall, while significantly reducing the network overhead. We use properly modifications of the Nginx Reverse Proxy protocols and Suricata NIDS/ IPS rules. Pure work has been done from other researchers based on the capabilities of Nginx and Suricata and our approach with the experimental results provided in the paper demonstrate the efficiency of our system. |
| DOI | 10.1109/ICECET52533.2021.9698688 |
| Citation Key | tanakas_novel_2021 |
A Novel System for Detecting and Preventing SQL Injection and Cross-Site-Script