Paper Contents
Abstract
In the ever-changing web security landscape, SQL Injection (SQLi) attacks are still a significant threat to database-driven applications. This paper presents the design and implementation of the SQL Security Suite: Advanced Injection Detector, a comprehensive security tool for real-time SQL Injection vulnerability detection and analysis. The system incorporates enhanced scanning techniques such as error-based, time-based, and boolean-based detection methods, together with response-time analysis and payload injection methods. It also encompasses basic Web Application Firewall (WAF) detection heuristics to enhance vulnerability assessment precision. The solution employs Python scripting and a Flask-based web interface to facilitate an easy-to-use and efficient scanning process for security analysts and developers. Experimental findings confirm the capability of the tool to detect SQLi vulnerabilities in multiple URL endpoints, login forms, and parameterized inputs at high detection rates. This research emphasizes the necessity of proactive vulnerability assessment and illustrates the efficacy of lightweight, configurable security solutions for modern web applications.
Copyright
Copyright © 2025 Arun S. This is an open access article distributed under the Creative Commons Attribution License.
