SQL Injection with Long URLs

Description

This search looks for long URLs that have several SQL commands visible within them.

Content Mapping

This content is not mapped to any local saved search. Add mapping


Use Case

Application Security

Category

Web Attack

Alert Volume

Medium

Journey

Stage 2

MITRE ATT&CK Tactics

Defense Evasion
Execution

MITRE ATT&CK Techniques

Exploitation for Privilege Escalation
Commonly Used Port

MITRE Threat Groups

APT18
APT19
APT28
APT29
APT3
APT32
APT33
APT37
Cobalt Group
Dragonfly 2.0
FIN6
FIN7
FIN8
Lazarus Group
Magic Hound
Night Dragon
OilRig
PLATINUM
TEMP.Veles
Threat Group-3390
Whitefly

Kill Chain Phases

Delivery

Data Sources

Web Server

   Help

SQL Injection with Long URLs Help

This search looks only at your web servers and returns the source, the web server, the URL and its length, and the user agent associated with HTTP GET requests for extremely long URLs or user agent lengths with more than three common SQL commands found within the URL.