SQLUnitGen: SQL Injection Testing Using Static and Dynamic Analysis
Yonghee Shin, Laurie Williams and Tao Xie
The 17th IEEE International Symposium on Software Reliability Engineering (Student Program Papers ISSRE 2006)
Raleigh, North Carolina, USA, November 6-10, 2006
Abstract
This paper proposes an approach to facilitate the identification of true input manipulation vulnerabilities via automated testing based on static analysis. We implemented a prototype of SQL injection vulnerability detection tool, SQLUnitGen. Our case study shows that SQLUnitGen had no false positives, but had a small number of false negatives while a static analysis tool called FindBugs had a false positive for every vulnerability that was actually protected by a white or black list input filter.