https://github.com/andrewdarnall/internet-security

Demonstration of the second order SQL Injection vulnerability and mitigation
https://github.com/andrewdarnall/internet-security

cybersecurity sql-injection

Last synced: over 1 year ago
JSON representation

Demonstration of the second order SQL Injection vulnerability and mitigation

• Host: GitHub
• URL: https://github.com/andrewdarnall/internet-security
• Owner: AndrewDarnall
• Created: 2023-06-12T21:58:50.000Z (about 3 years ago)
• Default Branch: main
• Last Pushed: 2023-06-21T19:06:59.000Z (about 3 years ago)
• Last Synced: 2025-01-20T21:57:55.038Z (over 1 year ago)
• Topics: cybersecurity, sql-injection
• Language: PHP
• Homepage:
• Size: 524 KB
• Stars: 0
• Watchers: 1
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

          
# Internet-Security ~ Project Work

This repo is meant to document the project work of the Internet Security course of my Bachelor's Degree in Computer Science

## Project Work

The goal of the project work is to study stored sql injections, with emphasis on the defensive (blue teaming) aspect of said vulnerability, which means studying the state of the art, the history of the vulnerability, the statistics on how many systems were and are currently vulnerable to this particular type of attack, how to prevent it and draw my conclusions in a formal report

I will also create a demo (an implementation) of the exploit, how it differs from a 'classic' sql injection, what other types of sql injections exit, what types of tools can penetration testers use to exploit said vulnerability and show what can be done to prevent said vulnerability from being exploited.

This particular vulnerability falls under the umbrella of Web Vulnerabilities