Securing web applications against XSS and SQLi attacks using a novel deep learning approach

Jaydeep R Tadhani; Vipul Vekariya; Vishal Sorathiya; Samah Alshathri; Walid El-Shafai

doi:10.1038/s41598-023-48845-4

Securing web applications against XSS and SQLi attacks using a novel deep learning approach

Sci Rep. 2024 Jan 20;14(1):1803. doi: 10.1038/s41598-023-48845-4.

Authors

Jaydeep R Tadhani¹, Vipul Vekariya², Vishal Sorathiya³, Samah Alshathri⁴, Walid El-Shafai^{5

6}

Affiliations

¹ Gujarat Technological University, Ahmedabad, Gujarat, India.
² Parul Institute of Engineering and Technology, Parul University, Vadodara, Gujarat, India. vekariya.vipul@gmail.com.
³ Parul Institute of Engineering and Technology, Parul University, Vadodara, Gujarat, India.
⁴ Department of Information Technology, College of Computer and Information Sciences, Princess Nourah bint Abdulrahman University, P.O. Box 84428, 11671, Riyadh, Saudi Arabia.
⁵ Security Engineering Lab, Computer Science Department, Prince Sultan University, 11586, Riyadh, Saudi Arabia.
⁶ Department of Electronics and Electrical Communications Engineering, Faculty of Electronic Engineering, Menoufia University, Menouf, 32952, Egypt.

Abstract

Modern web application development involves handling enormous amounts of sensitive and consequential data. Security is, therefore, a crucial component of developing web applications. A web application's security is concerned with safeguarding the data it processes. The web application framework must have safeguards to stop and find application vulnerabilities. Among all web application attacks, SQL injection and XSS attacks are common, which may lead to severe damage to Web application data or web functionalities. Currently, there are many solutions provided by various study for SQLi and XSS attack detection, but most of the work shown have used either SQL/XSS payload-based detection or HTTP request-based detection. Few solutions available can detect SQLi and XSS attacks, but these methods provide very high false positive rates, and the accuracy of these models can further be improved. We proposed a novel approach for securing web applications from both cross-site scripting attacks and SQL injection attacks using decoding and standardization of SQL and XSS payloads and HTTP requests and trained our model using hybrid deep learning networks in this paper. The proposed hybrid DL model combines the strengths of CNNs in extracting features from input data and LSTMs in capturing temporal dependencies in sequential data. The soundness of our approach lies in the use of deep learning techniques that can identify subtle patterns in the data that traditional machine learning-based methods might miss. We have created a testbed dataset of Normal and SQLi/XSS HTTP requests and evaluated the performance of our model on this dataset. We have also trained and evaluated the proposed model on the Benchmark dataset HTTP CSIC 2010 and another SQL/XSS payload dataset. The experimental findings show that our proposed approach effectively identifies these attacks with high accuracy and a low percentage of false positives. Additionally, our model performed better than traditional machine learning-based methods. This soundness approach can be applied to various network security applications such as intrusion detection systems and web application firewalls. Using our model, we achieved an accuracy of 99.84%, 99.23% and 99.77% on the SQL-XSS Payload dataset, Testbed dataset and HTTP CSIC 2010 dataset, respectively.

Grants and funding

PNURSP2023R197/This work is supported by Princess Nourah bint Abdulrahman University Researchers Supporting Project number (PNURSP2023R197), Princess Nourah bint Abdulrahman University, Riyadh, Saudi Arabia