Automated testing for SQL injection vulnerabilities: an input mutation approach

@inproceedings{Appelt2014AutomatedTF,
  title={Automated testing for SQL injection vulnerabilities: an input mutation approach},
  author={Dennis Appelt and Duy Cu Nguyen and Lionel C. Briand and Nadia Alshahwan},
  booktitle={ISSTA},
  year={2014}
}
Web services are increasingly adopted in various domains, from finance and e-government to social media. As they are built on top of the web technologies, they suffer also an unprecedented amount of attacks and exploitations like the Web. Among the attacks, those that target SQL injection vulnerabilities have consistently been top-ranked for the last years. Testing to detect such vulnerabilities before making web services public is crucial. We present in this paper an automated testing approach… CONTINUE READING
Highly Cited
This paper has 50 citations. REVIEW CITATIONS

From This Paper

Figures, tables, and topics from this paper.

Citations

Publications citing this paper.
Showing 1-10 of 28 extracted citations

Enabling mutation testing for Android apps

ESEC/SIGSOFT FSE • 2017
View 4 Excerpts
Highly Influenced

An Effective Penetration Test Approach Based on Feature Matrix for Exposing SQL Injection Vulnerability

2016 IEEE 40th Annual Computer Software and Applications Conference (COMPSAC) • 2016
View 5 Excerpts
Highly Influenced

51 Citations

0102020152016201720182019
Citations per Year
Semantic Scholar estimates that this publication has 51 citations based on the available data.

See our FAQ for additional information.

References

Publications referenced by this paper.

Effective Detection of SQL/XPath Injection Vulnerabilities in Web Services

2009 IEEE International Conference on Services Computing • 2009
View 5 Excerpts
Highly Influenced

Similar Papers

Loading similar papers…