摘要
网络爬虫在搜索引擎领域广泛使用,SQL注入漏洞检测属于Web服务和数据库安全的范畴。为了提高网站的安全性,及时、有效地发现网站存在的SQL注入漏洞,改进了现有的网络爬虫技术,应用到对网站SQL注入漏洞的检测中,丰富了检测的手段,降低了检测的漏报率。最后通过实验证明了该技术的可行性。
Web crawler is widely used in the field of search engine,while the detection of SQL injection vulnerability is about Web services and database security.In order to improve the security of Web site and effectively find the existence of SQL injection vulnerability,improving the existing technology of Web crawler,applied to the detection of SQL injection vulnerability,enriched the detection methods,reduced the detection under-reporting rate.The experiment proved the feasibility of the technology.
出处
《计算机应用研究》
CSCD
北大核心
2010年第7期2605-2607,共3页
Application Research of Computers
基金
国家"863"计划资助项目(2009AA01Z403
2009AA01Z435)