Sciweavers

    11 search results - page 2 / 3
    » CANDID: Dynamic candidate evaluations for automatic preventi...
    Sort
    View
    ICSE
    2009
    IEEE-ACM
    160views Software Engineering» more  ICSE 2009»
    Automatic creation of SQL Injection and cross-site scripting attacks
    14 years 1 months ago
    Automatic creation of SQL Injection and cross-site scripting attacks
    Download  www.cs.washington.edu
    We present a technique for finding security vulnerabilities in Web applications. SQL Injection (SQLI) and crosssite scripting (XSS) attacks are widespread forms of attack in whic...
    Adam Kiezun, Philip J. Guo, Karthick Jayaraman, Mi...
    claim paper
    Read More »
    ACSAC
    2007
    IEEE
    162views Security Privacy» more  ACSAC 2007»
    Sania: Syntactic and Semantic Analysis for Automated Testing against SQL Injection
    14 years 19 days ago
    Sania: Syntactic and Semantic Analysis for Automated Testing against SQL Injection
    Download  www.acsac.org
    With the recent rapid increase in interactive web applications that employ back-end database services, an SQL injection attack has become one of the most serious security threats....
    Yuji Kosuga, Kenji Kono, Miyuki Hanaoka, Miho Hish...
    claim paper
    Read More »
    KBSE
    2005
    IEEE
    147views Software Engineering» more  KBSE 2005»
    AMNESIA: analysis and monitoring for NEutralizing SQL-injection attacks
    13 years 12 months ago
    AMNESIA: analysis and monitoring for NEutralizing SQL-injection attacks
    Download  www.cc.gatech.edu
    The use of web applications has become increasingly popular in our routine activities, such as reading the news, paying bills, and shopping on-line. As the availability of these s...
    William G. J. Halfond, Alessandro Orso
    claim paper
    Read More »
    MIDDLEWARE
    2007
    Springer
    190views Distributed And Parallel Com...» more  MIDDLEWARE 2007»
    Dynamic multi-process information flow tracking for web application security
    14 years 12 days ago
    Dynamic multi-process information flow tracking for web application security
    Download  www.ecsl.cs.sunysb.edu
    Although there is a large body of research on detection and prevention of such memory corruption attacks as buffer overflow, integer overflow, and format string attacks, the web...
    Susanta Nanda, Lap-Chung Lam, Tzi-cker Chiueh
    claim paper
    Read More »
    POPL
    2006
    ACM
    168views Programming Languages» more  POPL 2006»
    The essence of command injection attacks in web applications
    14 years 6 months ago
    The essence of command injection attacks in web applications
    Download  www.cs.ucdavis.edu
    Web applications typically interact with a back-end database to retrieve persistent data and then present the data to the user as dynamically generated output, such as HTML web pa...
    Zhendong Su, Gary Wassermann
    claim paper
    Read More »
    Explore & Download
    Proceedings Preprints Top 5 Ranked Papers Publications Books Software Tutorials Presentations Lectures Notes Datasets
    Productivity Tools
    International On-screen Keyboard Graphical Social Symbols OCR Text Recognition CSS3 Style Generator Web Page to PDF Web Page to Image PDF Split PDF Merge Latex Equation Editor Sci2ools
    Document Tools
    PDF to Text PDF to Postscript PDF to Thumbnails Excel to PDF Word to PDF Postscript to PDF PowerPoint to PDF Latex to Word Repair Corrupted PDF
    Image Tools
    JPG to PS JPG to PDF Extract Images from PDF Image Converter
    Sciweavers
    About Community Cookies Privacy Policy Terms of Use

    Copyright © Sciweavers LLC, 2009-2024, USA.