Effective Detection of SQL/XPath Injection Vulnerabilities in Web Services

Antunes, Nuno; Laranjeiro, Nuno; Vieira, Marco; Madeira, Henrique

doi:10.1109/scc.2009.23

Cited by 53 publications

(38 citation statements)

References 5 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…These scenarios can be divided in web-based applications and systems , web services [34][35][36][37][38][39] network protocols and devices [11,14,[40][41][42][43][44][45][46][47][48][49][50][51][52], software and desktop applications [61], and process control system [62]. Figure 4 shows the different target scenarios that have a diversity in relation to the number of studies, and as mentioned before, most of the studies are related to web-based applications, network devices, and protocols contexts.…”

Section: Rq2-what Are the Target-scenarios In Pentest?mentioning

confidence: 99%

Overview and open issues on penetration test

Bertoglio

Zorzo

2017

J Braz Comput Soc

View full text Add to dashboard Cite

Several studies regarding security testing for corporate environments, networks, and systems were developed in the past years. Therefore, to understand how methodologies and tools for security testing have evolved is an important task. One of the reasons for this evolution is due to penetration test, also known as Pentest. The main objective of this work is to provide an overview on Pentest, showing its application scenarios, models, methodologies, and tools from published papers. Thereby, this work may help researchers and people that work with security to understand the aspects and existing solutions related to Pentest. A systematic mapping study was conducted, with an initial gathering of 1145 papers, represented by 1090 distinct papers that have been evaluated. At the end, 54 primary studies were selected to be analyzed in a quantitative and qualitative way. As a result, we classified the tools and models that are used on Pentest. We also show the main scenarios in which these tools and methodologies are applied to. Finally, we present some open issues and research opportunities on Pentest.

show abstract

Section: Rq2-what Are the Target-scenarios In Pentest?mentioning

confidence: 99%

Overview and open issues on penetration test

Bertoglio

Zorzo

2017

J Braz Comput Soc

View full text Add to dashboard Cite

show abstract

“…By performing XPath injection there are possibilities for attackers to extract the whole XML database [38].…”

Section: Xpath Injectionmentioning

confidence: 99%

Identifying SOA Security Threats using Web Mining

B¹,

R²

2015

IJCA

View full text Add to dashboard Cite

The Service Oriented Architecture (SOA) became a dominant paradigm for enterprise computing. The web services are the implementation of SOA that works for heterogeneous platforms as they use common Internet protocols for communication and simple text format such as XML for data representation. The basic SOA architecture does not contain any security solution within it and the security is applied to SOA as an ad-hoc manner and also it depends on the internal architecture of the security products. There is no comprehensive security solution is achieved yet for SOA. This paper identifies the SOA security threats using the data mining technique -web mining. At the end of this paper, a customizable security solution for SOA in the form of framework is presented.

show abstract

“…Successfully performed code implementation attacks give the opportunity for attackers, for example to extract the whole XML database. Some of the threats on the code implementation of the web service, which results in security vulnerabilities to attackers include, (i) SQL Injection, where the malicious SQL statements are inserted into XML in order to disrupt the back-end system, for example trying to receive data that it is not authorized to access, or even destroy the data [28], (ii) XPath Injection, as an XML document has no access control or privilege system associated with it, the attacker can to extract even the whole XML database [29], (iii) Cross-site Scripting, where the attacker inspects the web service applications and chooses the one web method that does not filter the input and at which the user is authenticated; the attacker inserts a malicious code in the request and this will be returned to the victim by web server. Then the malicious script will run at client with the privileges of a legitimate script originating from the legitimate web server [30].…”

Section: Threats On Web Service Implementation Logicmentioning

confidence: 99%