Long short‐term memory on abstract syntax tree for SQL injection detection

Z. Zhuo, T. Cai, X. Zhang, F. Lv
2021 IET Software  
SQL injection attack (SQLIA) is a code injection technique, used to attack data-driven applications by executing malicious SQL statements. Techniques like pattern matching, software testing and grammar analysis etc. are frequently used to prevent such attack. However, major bottlenecks still remain in detecting SQLIA with bypassing techniques, getting access to source code and requiring an additional manual operation to extract features. The authors propose a novel detection approach based on
more » ... ng short-term memory and abstract syntax tree, which could detect SQLIAs from the raw query strings and work under SQL detection bypassing scenario. Our deep learning technique explicitly uses both context and syntax information that previous methods failed to fully grasp. Experimental results clearly illustrate the superior performance of our method compared to other existing works when detecting with complete SQL raw queries. This is an open access article under the terms of the Creative Commons Attribution License, which permits use, distribution and reproduction in any medium, provided the original work is properly cited. © 2021 The Authors. IET Software published by John Wiley & Sons Ltd on behalf of The Institution of Engineering and Technology. 188 -IET Soft. 2021;15:188-197. wileyonlinelibrary.com/journal/sfw2 F I G U R E 1 SQL defense in different levels - ZHUO ET AL.
doi:10.1049/sfw2.12018 fatcat:k7ek57p7yrca3agftqya4ttmay