GENERATION OF SECURITY TEST TO FIND INJECTION ATTACKS BY CODE REVIEW

Security Testing is much important in Software Development to find the vulnerabilities while developing the product. In this paper I presented a method to find the injection vulnerabilities. Vulnerability is a security weakness or it is a hole in the product which is not fixed while developing the software. Normally Hackers hack the software by finding these vulnerabilities and cause data loss or severe damage to the entire product. Injection is one of the most dangerous attacks among much vulnerability which is placed in number one in the top 10 web application vulnerabilities by OWASP. This paper presents how to find these vulnerabilities using Code Review Testing technique. These implementations are used for only educational purpose. It is a crime if you apply these to any website without getting any permission from the owner. If crime is proved, he will be punished under Information Technology (Amendmen) Act, 2008, Section 43(a) read with section 66 is applicable.