Model of rules for malicious input parameters detection

Ескіз

Файли

274127-631647-1-10-20230217.pdf (1.07 MB)

Дата

2022

Автори

Науковий керівник

Назва журналу

Номер ISSN

Назва тому

Видавець

Igor Sikorsky Kyiv Polytechnic Institute

Анотація

This article is devoted to detection of advanced techniques of malicious input parameter injections and web application firewall (WAF) bypass. The authors have proposed a hierarchical model for detection rules definition, which allows to edit different fragments separately. This model has been implemented with the usage of Backus-Naur form and ANTLR4 (generator of parsers and lexers). The solution has been tested using some popular web application scanners. The testing environment has been created with Python3. The results of research have been compared with the corresponding ones for the existing open source solution – libinjection. The main accent has been made to SQL injcetions and Cross-Site Scripting attacks.

Опис

Ключові слова

Web application security, web application firewall, injection, attack detection, Backus-Naur form, ANTLR4

Бібліографічний опис

Korzhenevskyi, O. Model of rules for malicious input parameters detection / Oleksandr Korzhenevskyi, Mykola Graivoronskyi // Theoretical and Applied Cybersecurity : scientific journal. – 2022. – Vol. 4, Iss. 1. – Pp. 93–99. – Bibliogr. 12 ref.

URI

https://ela.kpi.ua/handle/123456789/55662

DOI

https://doi.org/10.20535/tacs.2664-29132022.1.274127

Зібрання

Theoretical and Applied Cybersecurity: scientific journal, Vol. 4, No. 1