Skip to content

mndarren/SQL-Injection-Simulation-Project

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

18 Commits
.settings
.settings
 
 
WebContent
WebContent
 
 
build/classes
build/classes
 
 
others
others
 
 
src
src
 
 
.classpath
.classpath
 
 
.gitignore
.gitignore
 
 
.project
.project
 
 
README.md
README.md
 
 

Repository files navigation

SQL Injection Simulation Project

=============================================

Purpose

This project will create a simple web application to simulate SQL Injection attack. This attack pattern is one of the most famous Application level attacks. So we can reduce the risk or avoid this attack happening through optimizing our application code.

Tools

Used Eclipse and MySQL

Architecture

Setting up 3 layers: UI, Logical, and DB
alt architecture

Example

  1. Original page
    alt orig
  2. Test case 1 (without protection)
    alt test1
  3. Test case 2 (without protection)(password is the same to user name)
    alt test2
  4. Test case 3(without protection)
    alt test3
  5. Test case 5 (repeat 3 with protection)
    alt test5
  6. Test case 6 (repeat 2 with protection)
    alt test6
  7. Test case 7(repeat 4 with protection)
    alt test7
  8. Test case 8(Common user login)
    alt test8

Notes

  1. In others folder, the related MySQL code is located there.
  2. If anyone wants to try this project code, the API of MySQL DB should be modified by the file: WebContent/META-INF/context.xml.
  3. This project needs to run on the Web Server Tomcat.

About

A college project to simulate a SQL Injection in java

Resources

Readme
Activity

Stars

15 stars

Watchers

1 watching

Forks

18 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages