Optimizing SQL Injection Prevention: A Multi-Layered Defense Approach

Kyriakos Kritikos, Kostas Magoutis, Manos Papoutsakis, and Sotiris Ioannidis. A survey on vulnerability assessment tools and databases for cloud-based web applications. Array, 3:100011, 2019.

BH HemaMalini, L Suresh, and Mayank Kushal. Comprehensive analysis of students’ performance by applying machine learning techniques. In Smart Intelligent Computing and Applications, pages 547–556. Springer, 2020.

Igor Tasevski and Kire Jakimoski. Overview of sql injection defense mechanisms. In 2020 28th Telecommunications Forum (TELFOR), pages 1–4. IEEE, 2020.

Nebojsa Bacanin, Milos Antonijevic, Nikola Vukobrat, Timea Bezdan, and Miodrag Zivkovic. Enhanced seagull optimization algorithm adapted for artificial neural network training. In ICT with Intelligent Applications: Proceedings of ICTIS 2021, Volume 1, pages 753–761. Springer, 2022.

Nebojsa Bacanin, Uros Arnaut, Miodrag Zivkovic, Timea Bezdan, and Tarik A Rashid. Energy efficient clustering in wireless sensor networks by opposition-based initialization bat algorithm. In Computer Networks and Inventive Communication Technologies: Proceedings of Fourth ICCNCT 2021, pages 1–16. Springer, 2022.

Nebojsa Bacanin, Luka Jovanovic, Miodrag Zivkovic, Venkatachalam Kandasamy, Milos Antonijevic, Muhammet Deveci, and Ivana Strumberger. Multivariate energy forecasting via metaheuristic tuned long-short term memory and gated recurrent unit neural networks. Information Sciences, 642:119122, 2023.

Nebojsa Bacanin, Aleksandar Petrovic, Miodrag Zivkovic, Timea Bezdan, and Milos Antonijevic. Feature selection in machine learning by hybrid sine cosine metaheuristics. In International Conference on Advances in Computing and Data Sciences, pages 604–616. Springer, 2021.

Nebojsa Bacanin, Marko Sarac, Nebojsa Budimirovic, Miodrag Zivkovic, Ahmad Ali AlZubi, and Ali Kashif Bashir. Smart wireless health care system using graph lstm pollution prediction and dragonfly node localization. Sustainable Computing: Informatics and Systems, 35:100711, 2022.

Nebojsa Bacanin, Vladimir Simic, Miodrag Zivkovic, Melfi Alrasheedi, and Aleksandar Petrovic. Cloud computing load prediction by decomposition reinforced attention long short-term memory network optimized by modified particle swarm optimization algorithm. Annals of Operations Research, pages 1–34, 2

Zar Chi Su Su Hlaing and Myo Khaing. A detection and prevention technique on sql injection attacks. In 2020 IEEE Conference on Computer Applications (ICCA), pages 1–6. IEEE, 2020.

Rajashree A Katole, Swati S Sherekar, and Vilas M Thakare. Detection of sql injection attacks by removing the parameter values of sql query. In 2018 2nd International Conference on Inventive Systems and Control (ICISC), pages 736–741. IEEE, 2018.

Pan Lin, Wang Jinshuang, Chen Ping, and Yang Lanjuan. Sql injection attack and detection based on greensql pattern input whitelist. In 2020 IEEE 3rd International Conference on Information Systems and Computer Aided Education (ICISCAE), pages 187–190. IEEE, 2020.

Vedant Singh and Vrinda Yadav. Survey of blockchain applications in database security. In Advances in Distributed Computing and Machine Learning, pages 147–154. Springer, 2021.

Venkata Vamsikrishna Meduri, Kanchan Chowdhury, and Mohamed Sarwat. Evaluation of machine learning algorithms in predicting the next sql query from the future. ACM Transactions on Database Systems (TODS), 46(1):1–46, 2021.

Ding Chen, Qiseng Yan, Chunwang Wu, and Jun Zhao. Sql injection attack detection and prevention techniques using deep learning. In Journal of Physics: Conference Series, volume 1757, page 012055. IOP Publishing, 2021.

Muhammad Saidu Aliero, Kashif Naseer Qureshi, Muhammad Fermi Pasha, Awais Ahmad, and Gwanggil Jeon. Detection of structure query language injection vulnerability in web driven database application. Concurrency and Computation: Practice and Experience, page e5936, 2020.

Jianwei Hu, Wei Zhao, and Yanpeng Cui. A survey on sql injection attacks, detection and prevention. In Proceedings of the 2020 12th International Conference on Machine Learning and Computing, pages 483–488, 2020.

Nebojsa Bacanin, Catalin Stoean, Miodrag Zivkovic, Dijana Jovanovic, Milos Antonijevic, and Djordje Mladenovic. Multi-swarm algorithm for extreme learning machine optimization. Sensors, 22(11):4204, 2022.

Nebojsa Bacanin, Miodrag Zivkovic, Fadi Al-Turjman, K Venkatachalam, Pavel Trojovsk`y, Ivana Strumberger, and Timea Bezdan. Hybridized sine cosine algorithm with convolutional neural networks dropout regularization application. Scientific Reports, 12(1):6302, 2022.

Nebojsa Bacanin, Miodrag Zivkovic, Milos Antonijevic, K Venkatachalam, Jinseok Lee, Yunyoung Nam, Marina Marjanovic, Ivana Strumberger, and Mohamed Abouhawwash. Addressing feature selection and extreme learning machine tuning by diversity-oriented social network search: an application for phishing websites detection. Complex & Intelligent Systems, 9(6):7269–7304, 2023.

Nebojsa Bacanin, Miodrag Zivkovic, Luka Jovanovic, Milica Ivanovic, and Tarik A Rashid. Training a multilayer perception for modeling stock price index predictions using modified whale optimization algorithm. In Computational Vision and BioInspired Computing: Proceedings of ICCVBIC 2021, pages 415–430. Springer, 2022.

Nebojsa Bacanin, Miodrag Zivkovic, Mohamed Salb, Ivana Strumberger, and Amit Chhabra. Convolutional neural networks hyperparameters optimization using sine cosine algorithm. In Sentimental Analysis and Deep Learning: Proceedings of ICSADL 2021, pages 863–878. Springer, 2022.

Nebojsa Bacanin, Miodrag Zivkovic, Marko Sarac, Aleksandar Petrovic, Ivana Strumberger, Milos Antonijevic, Andrija Petrovic, and K Venkatachalam. A novel multiswarm firefly algorithm: An application for plant classification. In International Conference on Intelligent and Fuzzy Systems, pages 1007–1016. Springer, 2022.

Nebojsa Bacanin, Miodrag Zivkovic, Catalin Stoean, Milos Antonijevic, Stefana Janicijevic, Marko Sarac, and Ivana Strumberger. Application of natural language processing and machine learning boosted with swarm intelligence for spam email filtering. Mathematics, 10(22):4173, 2022.

Jameer Basha, Nebojsa Bacanin, Nikola Vukobrat, Miodrag Zivkovic, K Venkatachalam, Stepan Hubálovsk`y, and Pavel Trojovsk`y. Chaotic harris hawks optimization with quasi-reflection-based learning: An application to enhance cnn design. Sensors, 21(19):6654, 2021.

Timea Bezdan, Dusan Cvetnic, Luka Gajic, Miodrag Zivkovic, Ivana Strumberger, and Nebojsa Bacanin. Feature selection by firefly algorithm with improved initialization strategy. In 7th conference on the engineering of computer based systems, pages 1–8, 2021.

Raymond F Boyce and Donald D Chamberlin. Using a structured English query language as a data definition facility. IBM Thomas J. Watson Research Division, 1973.

dvanced Data Mining in MySQL Injections using Subqueries & Custom Variables” by Ionut Maroiu http://www.slideshare.net/DefCamp/advanced-data-mining-in-my-sql-injections-using-subqueries-and-custom-variables

“Blind Sql Injection with Regular Expressions Attack” by Simone Quatrini and Marco Rondini - http://www.exploitdb.com/wp-content/themes/exploit/docs/17397.pdf

“Fast data extraction using SQL injection and XML statements” by Daniel Kachakil - http://www.kachakil.com/papers/SFX-SQLi-Paper-en.pdf

“Faster Blind MySQL Injection Using Bit Shifting” by Jelmer de Hen - http://www.exploit-db.com/papers/17073/

“Faster exploitation methods in Oracle and PostgreSQL” by Dmitriy Serebryannikov - https://twitter.com/dsrbr/status/342132003270959104/photo/1 https://twitter.com/dsrbr/status/340018970054766592/photo/1

SQL Injection Knowledge Base - http://www.websec.ca/kb/sql_injection

“URI Encoding to Bypass IDS/IPS” - http://threatlandscape.blogspot.ca/2007/07/uri-encoding-to-bypass-idsips.html