Skip to content

dimitrop/SDriver

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
 
 
 
 

Repository files navigation

SDriver

SQL injection attacks involve the construction of application input data that will result in the execution of malicious SQL statements. Many web applications are prone to SQL injection attacks. For preventing this kind of attacks we have implemented SDriver. SDriver/SQL is a type 4 JDBC driver (native-protocol driver) and it must be placed between the application and its underlying database. To detect an attack, the driver uses stripped-down SQL queries and stack traces to create SQL statement signatures that are then used to distinguish between injected and legitimate queries. The driver depends neither on the application nor on the rdbms and can be easily retrofitted to any system. For more check the corresponding publication:

http://www.dmst.aueb.gr/dds/pubs/jrnl/2009-CompSec-SQLIA/html/sqlia.html

About

A database driver that prevents SQL injection attacks.

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages