An Integrated Prediction of SQL Injection using Random Forest

Abstract

SQL injection is one of the cyber attack used by the attackers to penetrate into the web application database. This attack is considered to be the top ten threats and is also declared by “Open Web Application Security Project”. The importance of the injection detection is that even a young person can initiate this attack from any place and also no prior knowledge is required as there are existing tools available extensively. This attack works in the way by inserting a malicious code or logic in the authentication page and this compromises the system to return true in the condition while checking the data with the data present in the database. Actually, this malicious code breaks the format of string to a logic based function as in default all the data that are inputted by the user is written in a string format. We are using Random Forest algorithm to detect the injection attack.