Cargando…
Vulnerability Assessment of IPv6 Websites to SQL Injection and Other Application Level Attacks
Given the proliferation of internet connected devices, IPv6 has been proposed to replace IPv4. Aside from providing a larger address space which can be assigned to internet enabled devices, it has been suggested that the IPv6 protocol offers increased security due to the fact that with the large num...
| Autores principales: | , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
Hindawi Publishing Corporation
2013
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC3932175/ https://www.ncbi.nlm.nih.gov/pubmed/24574863 http://dx.doi.org/10.1155/2013/946768 |
| _version_ | 1782304757870755840 |
|---|---|
| author | Cho, Ying-Chiang Pan, Jen-Yi |
| author_facet | Cho, Ying-Chiang Pan, Jen-Yi |
| author_sort | Cho, Ying-Chiang |
| collection | PubMed |
| description | Given the proliferation of internet connected devices, IPv6 has been proposed to replace IPv4. Aside from providing a larger address space which can be assigned to internet enabled devices, it has been suggested that the IPv6 protocol offers increased security due to the fact that with the large number of addresses available, standard IP scanning attacks will no longer become feasible. However, given the interest in attacking organizations rather than individual devices, most initial points of entry onto an organization's network and their attendant devices are visible and reachable through web crawling techniques, and, therefore, attacks on the visible application layer may offer ways to compromise the overall network. In this evaluation, we provide a straightforward implementation of a web crawler in conjunction with a benign black box penetration testing system and analyze the ease at which SQL injection attacks can be carried out. |
| format | Online Article Text |
| id | pubmed-3932175 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2013 |
| publisher | Hindawi Publishing Corporation |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-39321752014-02-26 Vulnerability Assessment of IPv6 Websites to SQL Injection and Other Application Level Attacks Cho, Ying-Chiang Pan, Jen-Yi ScientificWorldJournal Research Article Given the proliferation of internet connected devices, IPv6 has been proposed to replace IPv4. Aside from providing a larger address space which can be assigned to internet enabled devices, it has been suggested that the IPv6 protocol offers increased security due to the fact that with the large number of addresses available, standard IP scanning attacks will no longer become feasible. However, given the interest in attacking organizations rather than individual devices, most initial points of entry onto an organization's network and their attendant devices are visible and reachable through web crawling techniques, and, therefore, attacks on the visible application layer may offer ways to compromise the overall network. In this evaluation, we provide a straightforward implementation of a web crawler in conjunction with a benign black box penetration testing system and analyze the ease at which SQL injection attacks can be carried out. Hindawi Publishing Corporation 2013-12-26 /pmc/articles/PMC3932175/ /pubmed/24574863 http://dx.doi.org/10.1155/2013/946768 Text en Copyright © 2013 Y.-C. Cho and J.-Y. Pan. https://creativecommons.org/licenses/by/3.0/ This is an open access article distributed under the Creative Commons Attribution License, which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited. |
| spellingShingle | Research Article Cho, Ying-Chiang Pan, Jen-Yi Vulnerability Assessment of IPv6 Websites to SQL Injection and Other Application Level Attacks |
| title | Vulnerability Assessment of IPv6 Websites to SQL Injection and Other Application Level Attacks |
| title_full | Vulnerability Assessment of IPv6 Websites to SQL Injection and Other Application Level Attacks |
| title_fullStr | Vulnerability Assessment of IPv6 Websites to SQL Injection and Other Application Level Attacks |
| title_full_unstemmed | Vulnerability Assessment of IPv6 Websites to SQL Injection and Other Application Level Attacks |
| title_short | Vulnerability Assessment of IPv6 Websites to SQL Injection and Other Application Level Attacks |
| title_sort | vulnerability assessment of ipv6 websites to sql injection and other application level attacks |
| topic | Research Article |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC3932175/ https://www.ncbi.nlm.nih.gov/pubmed/24574863 http://dx.doi.org/10.1155/2013/946768 |
| work_keys_str_mv | AT choyingchiang vulnerabilityassessmentofipv6websitestosqlinjectionandotherapplicationlevelattacks AT panjenyi vulnerabilityassessmentofipv6websitestosqlinjectionandotherapplicationlevelattacks |