Login   Register  
PHP Classes
elePHPant
Icontem

class_sql_inject: Detect attempts to perform SQL injection attacks

Recommend this page to a friend!
Stumble It! Stumble It! Bookmark in del.icio.us Bookmark in del.icio.us

  Author Author  
Picture of MARY Matthieu
Name: MARY Matthieu <contact>
Classes: 19 packages by
Country: France, Metropolitan France, Metropolitan
Age: 35
All time rank: 241 in France, Metropolitan France, Metropolitan
Week rank: 173 Down1 in France, Metropolitan France, Metropolitan Equal


  Detailed description   Download Download .zip .tar.gz  
This class is meant to search in your SQL data values for special characters that may change the meaning of your SQL data and execute actions that may compromise the security of servers.

When some of these suspicious character sequences is found in HTTP POST request values ($_POST), you can:
- Destroy the current session
- Redirect to a new page
- Log the activity

To check the request values do the following:

$bDestroy_session = TRUE;
$url_redirect = 'index.php';
$sqlinject = new sql_inject('./path_to_log.log',$bDestroy_session,$url_redirect);
$sql_inject->test($your_sql_data);

This class requires PHP 4 or later.

Notice: this class recognise only some of the known types of SQL injection methods and so it is not yet ready to deal with all possible ways to perform this kind of attack.

  Classes of MARY Matthieu  >  class_sql_inject  >  Download Download .zip .tar.gz  >  Support forum Support forum  >  Blog Blog  >  RSS 1.0 feed RSS 2.0 feed Latest changes  
Name: class_sql_inject
Base name: class_sql_inject
Description: Detect attempts to perform SQL injection attacks
Version: -
PHP version: -
License: GNU General Public License (GPL)
All time users: 6988 users
All time rank: 249
Week users: 3 users
Week rank: 577 Down
 
  Groups   Rate classes User ratings   Applications   Related pages   Files Files  

  Groups  
Group folder image Databases Database management, accessing and searching View top rated classes
Group folder image Security Security protection and attack detection View top rated classes


  User ratings  
RatingsUtility Consistency Documentation Examples Tests Videos Overall Rank
All time: Sufficient (63%) Not sure (57%) - Not sure (46%) - - Not sure (42%) 2053
Month: Not yet rated by the users

  Applications that use this package  
No pages of applications that use this class were specified.
Add link image If you know an application of this package, send a message to the author to add a link here.

  Related pages  
documentation
functions documentation
forum
Share yours problems, questions, and use on the official forum for this class

  Files folder image Files  
File Role Description
Plain text file class_sql_inject.php Class class file
Accessible without login Plain text file class_sql_inject_examples.php Example an examples of some SQL_injections attempt detect by the class
Accessible without login Plain text file LICENCE Lic. copy of GPL licence

Download Download all files: class_sql_inject.tar.gz class_sql_inject.zip
NOTICE: if you are using a download manager program like 'GetRight', please Login before trying to download this archive.