SQL Injection Attacks: A Quick Primer hassan.abudu@owasp.org OWASP - PowerPoint PPT Presentation

Dec 11, 2023 •586 likes •682 views

SQL Injection Attacks: A Quick Primer hassan.abudu@owasp.org OWASP Top 10 Vulnerabilities - 2017 Rank Name 1 Injection 2 Broken Authentication 3 Sensitive Data Exposure 4 XML External Entities 5 Broken Access Control 6 Security

SQL Injection Attacks: A Quick Primer hassan.abudu@owasp.org
OWASP Top 10 Vulnerabilities - 2017 Rank Name 1 Injection 2 Broken Authentication 3 Sensitive Data Exposure 4 XML External Entities 5 Broken Access Control 6 Security Misconfiguration 7 Cross-Site Scripting 8 Insecure Deserialization 9 Using Components with Known Vulnerabilities 10 Insufficient Logging & Monitoring
Injection Attacks An important lesson: Trust nobody
Explanation Suppose user makes a modified HTTP request › https://www.store.com/orders?year=0%20OR%201%3D1 SELECT date, item FROM orders   WHERE user=126 AND year=0 OR 1=1 E ffect › sets year variable to 0 OR 1=1 › shows all orders in the database 4
Price List for Stolen Data Address $0.50 Phone number $0.25 Unpublished phone $17.50 Cell phone number $10 Date of birth $2 Social Security number $8 Drivers’s License $3 Education $12 Credit History $9 Bankruptcy details $26.50 Lawsuit information $2.95
  Solution Use parameterized queries, and don’t sweat it! // PHP - PDO $stmt = $dbh->prepare("INSERT INTO REGISTRY (name, value) VALUES (:name, :value)"); $stmt->bindParam(':name', $name); $stmt->bindParam(':value', $value); 6
7
Thanks for you r attention! :-) (Easy) Questions?

Download Presentation

Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

CROSS SITE SCRIPTING (XSS) ATTACKS Injection attacks 3/18/19 1 Whoami Ad Adam Nu Nurudin

CROSS SITE SCRIPTING (XSS) ATTACKS Injection attacks 3/18/19 1 Whoami Ad Adam Nu Nurudin ini CEH, ITIL L V3, 3, CCNA, CCNP, CASP, PCI-DS DSS.. .. Lead Security Researcher @ Netwatch Technologies Project Consultant, Information

377 views • 20 slides

Countering Code-Injection Attacks With Instruction-Set Randomization Gaurav S. Kc, Angelos D.

Countering Code-Injection Attacks With Instruction-Set Randomization Gaurav S. Kc, Angelos D. Keromytis Columbia University Vassilis Prevelakis Drexel University 1 Overview of Technique Protect from code-injection attacks create

608 views • 19 slides

Code-Injection Attacks in Browsers Supporting Policies Elias Athanasopoulos , Vasilis Pappas, and

Code-Injection Attacks in Browsers Supporting Policies Elias Athanasopoulos , Vasilis Pappas, and Evangelos P. Markatos FORTH-ICS What is all about? New code-injection attacks or return-to-libc attacks in the web

666 views • 48 slides

Using Partial Taint Tracking To Protect Against Injection Attacks Ioannis Papagiannis , Matteo

PHP Aspis: Using Partial Taint Tracking To Protect Against Injection Attacks Ioannis Papagiannis , Matteo Migliavacca, Peter Pietzuch Department of Computing, Imperial College London USENIX WebApps 2011 Portland, OR, USA Injection

763 views • 47 slides

A1 (Part 2): Injection SQL Injection SQL injection is prevalent SQL injection is impactful Why a

A1 (Part 2): Injection SQL Injection SQL injection is prevalent SQL injection is impactful Why a password manager is a good idea! SQL injection is ironic SQL injection is funny Overviewtrated Account Summary Account: Account: "SELECT

445 views • 32 slides

Server-side Web Security: SQL Injection Attacks & XSS CS 161: Computer Security Prof. David

Server-side Web Security: SQL Injection Attacks & XSS CS 161: Computer Security Prof. David Wagner February 12, 2014 SQL Injection Scenario Suppose web server front end stores URL parameter recipient in variable $recipient and

656 views • 37 slides

SQL Injection Attacks Many web servers have backing databases Much of their information

SQL Injection Attacks Many web servers have backing databases Much of their information stored in a database Web pages are built (in part) based on queries to a database Possibly using some client input . . . Lecture 16 Page 1

646 views • 21 slides

Outline Classic code injection attacks CSci 5271 Announcements intermission Introduction to

Outline Classic code injection attacks CSci 5271 Announcements intermission Introduction to Computer Security Day 4: Low-level attacks Shellcode techniques Stephen McCamant University of Minnesota, Computer Science & Engineering

412 views • 5 slides

Server -side security risks (esp sp. . injection jection atta ttacks) s) websec 1 Attacks

Web Securi rity ty Server -side security risks (esp sp. . injection jection atta ttacks) s) websec 1 Attacks on the web server malicious input web server er output This can be attacks on Availability: i.e. DoS attack, where attacker

1.86k views • 79 slides

NEVO sequential gas injection system New sequential gas injection system NEVO Answer for

NEVO sequential gas injection system New sequential gas injection system NEVO Answer for market expectations Modern cars Demanding users Workshop time saving KME trademark Major assumptions of NEVO system Simple Quick to

222 views • 21 slides

CSS Injection Attacks or how to leak content with <style> * { author: Pepe Vila; year:

CSS Injection Attacks or how to leak content with <style> * { author: Pepe Vila; year: 2019; } Historical background (might be historically inaccurate) ~2007: Gareth Heyes, David Lindsay and Eduardo Vela (from sla.ckers.org) published

412 views • 15 slides

Combining Static Analysis and Runtime Monitoring to Counter SQL-Injection Attacks William

Combining Static Analysis and Runtime Monitoring to Counter SQL-Injection Attacks William Halfond & Alessandro Orso Georgia Institute of Technology This work was supported in part by NSF awards CCR-0306372, CCR-0205422, and CCR-0209322 to

187 views • 17 slides

Using Positive Tainting and Syntax-Aware Evaluation to Counter SQL Injection Attacks William

Using Positive Tainting and Syntax-Aware Evaluation to Counter SQL Injection Attacks William G.J. Halfond Alessandro Orso Panagiotis Manolios Georgia Institute of Technology Supported by NSF awards CCR-0205422 and CCR-0306372 to GA Tech and

678 views • 34 slides

AMNESIA: Analysis and Monitoring for Neutralizing SQL- Injection Attacks William Halfond

AMNESIA: Analysis and Monitoring for Neutralizing SQL- Injection Attacks William Halfond Alessandro Orso Georgia Institute of Technology This work was supported in part by NSF awards CCR-0306372, CCR-0205422, and CCR-0209322 to Georgia Tech,

627 views • 23 slides

FAROS: Illuminating In-Memory Injection Attacks via Provenance-based Whole System Dynamic

FAROS: Illuminating In-Memory Injection Attacks via Provenance-based Whole System Dynamic Information Flow Tracking Meisam Navaki Arefi , Geoffrey Alexander, Hooman Rokham, Aokun Chen, Michalis Faloutsos, Xuetao Wei, Daniela Seabra Oliveira and

588 views • 32 slides

Understanding and Automatically Preventing Injection Attacks on Node.js Michael Pradel TU

Understanding and Automatically Preventing Injection Attacks on Node.js Michael Pradel TU Darmstadt Joint work with Cristian Staicu (TU Darmstadt) and Ben Livshits (Microsoft Research, Redmond) 1 Why JavaScript? Relevant and challenging

520 views • 48 slides

SQL Database Systems: The Complete Book Ch 2.3, 6.1-6.4 1 Project Outline ??? Parser &

SQL Database Systems: The Complete Book Ch 2.3, 6.1-6.4 1 Project Outline ??? Parser & SQL Query Relational Algebra Translator .sql JSqlParser Optimizer ??? Statistics Hope and Duct Tape? Query Evaluation Execution Plan Result

637 views • 40 slides

Supporting Time-Constrained SQL Queries in Oracle Ying Hu, Seema Sundara, Jagannathan Srinivasan

<Insert Picture Here> Supporting Time-Constrained SQL Queries in Oracle Ying Hu, Seema Sundara, Jagannathan Srinivasan Oracle New England Development Center One Oracle Drive, Nashua, NH 03062 Talk Outline The Problem and Our Approach

791 views • 40 slides

ECPR Methods Summer School: Big Data Analysis in the Social Sciences Pablo Barber a London

ECPR Methods Summer School: Big Data Analysis in the Social Sciences Pablo Barber a London School of Economics pablobarbera.com Course website: pablobarbera.com/ECPR-SC105 Introduction to SQL Databases I Database systems: computerized

231 views • 6 slides

Bringing SQL to the Masses with Program Synthesis Chenglong Wang, Alvin Cheung, Ras Bodik

Bringing SQL to the Masses with Program Synthesis Chenglong Wang, Alvin Cheung, Ras Bodik University of Washington 1 End-User SQL Select x.id, x.customer, x.total From PURCHASES x Select rows with Join (Select p.customer, maximum value

207 views • 17 slides

Chapter 4: SQL Basic Structure Set Operations Aggregate Functions Null Values

' $ Chapter 4: SQL Basic Structure Set Operations Aggregate Functions Null Values Nested Subqueries Derived Relations Views Modification of the Database Joined Relations Data Definition Language Embedded

489 views • 30 slides

Database Systems SQL Based on slides by Feifei Li, University of Utah The SQL Query Language n

Database Systems SQL Based on slides by Feifei Li, University of Utah The SQL Query Language n SQL stands for Structured Query Language n The most widely used relational query language. Current standard is SQL:2016 (actually there is a new

1.22k views • 97 slides

SQL Workshop Introduction Queries Doug Shook SQL Server As its name implies: its a

SQL Workshop Introduction Queries Doug Shook SQL Server As its name implies: its a data base server! Technically it is a database management system (DBMS) Competitors: Oracle, MySQL, DB2 End users (thats you!) interact

989 views • 51 slides

CS 61: Database Systems Joins Adapted from Silberschatz, Korth, and Sundarshan unless otherwise

CS 61: Database Systems Joins Adapted from Silberschatz, Korth, and Sundarshan unless otherwise noted Agenda 1. Joins 2. nyc_inspections schema 3. Joins on nyc_inspections 4. Conditional evaluation 2 With JOIN store data one time in

604 views • 27 slides