基于二阶分片重组盲注的渗透测试方法

Penetration test method using blind SQL injection based on second-order fragment and reassembly

下载PDF

导出

摘要针对如何克服当前SQL注入渗透测试存在的盲目性,以生成优化的SQL注入攻击模式、增强渗透测试攻击生成阶段的有效性,提高对SQL注入渗透测试的准确度问题,提出一种基于二阶分片重组的SQL盲注漏洞渗透测试方法。该方法通过对SQL注入攻击行为进行建模,并以模型驱动渗透测试多形态和多种类的攻击生成,从而降低SQL注入渗透测试盲目性,提高其准确度。通过实际的Web应用SQL注入漏洞测试实验与比较分析,不仅验证了所提方法的有效性,而且通过减少在安全防御环境下对SQL注入漏洞检测的漏报,提高其测试的准确度。 How to get rid of the blindness of current SQL injection penetration test, produce the optimized attack pattern of SQL injection, enhance the effectiveness in the phase of attack generation, and improve the accuracy of vulnerability detection of SQL injection using penetration test, is a big challenge. In order to resolve these problems, a new penetration test method using blind SQL injection was proposed based on second-order fragment and reassembly. In this method, the SQL injection attack model was built firstly and then the multiform and multi-type attack patterns of SQL injection pene-tration test driven by the SQL injection attack model was produced, which can reduce the blindness of SQL injection pe-netration test and improve the accuracy of SQL injection vulnerability detection. The experiments of SQL injection vul-nerability detection was conducted through the actual Web applications by using proposed method in comparison with current methods. The analysis results of test show the proposed method is better compared with other methods, which not only proves the effectiveness of proposed method, but also improve the accuracy of SQL injection vulnerability detection by reducing false negative in the defensive environment.

作者乐德广龚声蓉吴少刚徐锋刘文生

机构地区常熟理工学院计算机科学与工程学院苏州大学计算机科学与技术学院中科梦兰电子科技有限公司泉州市公安局公共信息网络安全监察支队

出处《通信学报》 EI CSCD 北大核心 2017年第A01期73-82,共10页 Journal on Communications

基金国家自然科学基金资助项目(No.61402057) 江苏省产学研前瞻性联合研究基金资助项目(No.BY2016050-01) 江苏省科技计划基金资助项目(No.BK20160411)~~

关键词 SQL注入渗透测试攻击模型二阶分片重组 SQL injection, penetration test, attack model, second-order fragment and reassembly

分类号 TP393 [自动化与计算机技术—计算机应用技术]

引文网络
相关文献

参考文献2

1田伟,许静,杨巨峰,张莹,刘磊.模型驱动的Web应用SQL注入渗透测试[J].高技术通讯,2012,22(11):1161-1168. 被引量：5
2乐德广,李鑫,龚声蓉,郑力新.新型二阶SQL注入技术研究[J].通信学报,2015,36(S1):85-93. 被引量：13

二级参考文献35

1王文明,李海炜.SQL服务器注入攻击的主动防御技术研究[J].计算机科学,2012,39(S3):9-13. 被引量：3
2Bau J,Bursztein E, Gupta D,et al. State of the art: au-tomated black-box web application vulnerability testing.In: Proceedings of the 2010 IEEE Symposium on Securityand Privacy, Oakland, USA, 2010. 332-345.
3Doup'e A, Cova M, Vigna Gi. Why johnny can’t pen-test: an analysis of black-box web vulnerability scanners.In: Proceedings of the 7th GI International Conference onDetection of Intrusions and Malware and Vulnerability As-sessment ,Bonn, Germany, 2010. 111-131.
4Antunes J,Neves N,Correia M,et al. Vulnerability dis-covery with attack injection. IEEE Transactions on Soft-ware Engineering, 2010,36(3). :357-369.
5Halford W, Choudhary S, Orso A. Improving penetrationtesting through static and dynamic analysis. In: Proceed-ings of the 2nd IEEE International Conference on SoftwareTesting, Verification and Validation, West Sussex, UK,2011.195-214.
6Antunes N, Laranjeiro N, Vieira M, et al. Effective de-tection of SQL/XPath injection vulnerabilities in webservices. In: Proceedings of the IEEE International Con-ference on Services Computing, Bangalore, India, 2009.260-267.
7Fong E,Gaucher R,Okun V, et al. Building a test suitefor web application scanners. In: Proceedings of AnnualHawaii International Conference on System Sciences, Ha-waii, USA, 2008. 479486.
8Byers D, Shahmehri N. Unified modeling of attacks, vul-nerabilities and security activities. In: Proceedings of2010 ICSE Workshop on Software Engineering for SecureSystems, New York, USA, 2010. 3642.
9Wang J, Phan R C,John N, et al. Augmented attack treemodeling of SQL injection attacks. In: Proceedings of the2nd IEEE International Conference on Information Man-agement and Engineering, Chengdu, China,2010. 182-186.
10Marback A, Do H, He K, et al. Security test generationusing threat trees. In: Proceedings of ICSE Workshop onAutomation of Software Test, Vancouver, Canada, 2009.62-69.

共引文献15

1李静力.面向高危风险漏洞修复行为的系统研究[J].自动化技术与应用,2019,38(1):39-45. 被引量：2
2张伟,解争龙.基于私有云泄漏的攻击方法研究[J].计算机技术与发展,2015,25(6):124-127. 被引量：2
3李鑫,张维纬,隋子畅,郑力新.新型SQL注入及其防御技术研究与分析[J].信息网络安全,2016(2):66-73. 被引量：14
4吴力挽,苏曼玲,杨翀.医学检验技术专业共享主题素材库的设计与实现[J].电子世界,2016,0(24):55-56.
5吴力挽,苏曼玲,杨翀.SQL注入攻击研究[J].网络安全技术与应用,2017(1):75-75. 被引量：3
6王杰,汪洋.二阶SQL注入防御技术研究[J].电子设计工程,2018,26(10):63-67. 被引量：1
7符天,汪志,王贞.Web服务的SQL注入攻击及防御研究[J].软件,2018,39(4):44-47. 被引量：5
8李鑫,张维纬,郑力新.动静结合的二阶SQL注入漏洞检测技术[J].华侨大学学报（自然科学版）,2018,39(4):600-605. 被引量：2
9单文增,房驰.Web项目中SQL注入问题与防范方法考究[J].读天下,2016,0(23):212-212.
10尹中旭,张连成.一种数据流相关过滤器自动插入的注入入侵避免方案[J].计算机科学,2019,46(1):201-205. 被引量：2

1尤枫,马金慧,张雅峰.基于Chopping的Web应用SQL注入漏洞检测方法[J].计算机系统应用,2018,27(1):86-91. 被引量：3
2高康,兰吉武.土工膜漏洞检测经验总结[J].环境卫生工程,2017,25(5):77-80. 被引量：2
3程从华,程丽娟.基于循序Ⅰ型删失数据的广义Pareto分布最优删失计划[J].海南师范大学学报（自然科学版）,2017,30(4):391-395.
4杨智为,谢文军,刘晓平.AAPS模型驱动的四足足迹约束生成方法[J].计算机辅助设计与图形学学报,2017,29(11):2066-2075.
5石培培,刘玉书.美国网络安全战略变化趋势及问题研究[J].战略决策研究,2018,9(1):3-24. 被引量：4
6李颖.数字审美语境下Web产品美学设计研究——以移动浏览器产品设计为例[J].安徽工程大学学报,2017,32(6):51-56. 被引量：1
7林丽群.辽代上京的治安防范[J].理论观察,2017(12):16-18. 被引量：1
8王海燕,胡婷,谢燕,刘际鹏.面向实战应用的城市警用感知平台建设研究[J].计算机与网络,2017,43(24):66-68. 被引量：1
9吉华斌,尚颖,李征.Web应用程序异步请求时序问题检测[J].计算机科学与探索,2018,12(1):101-111. 被引量：4
10曹钧.低含量地质样品中氯的分析测试方法及改进研究[J].低碳世界,2018,0(1):39-40.

通信学报

2017年第A01期

浏览历史

内容加载中请稍等...

基于二阶分片重组盲注的渗透测试方法

参考文献2

二级参考文献35

共引文献15

相关作者

相关机构

相关主题

浏览历史