SQL-Injection Simulation

amulici · January 3, 2023, 1:12pm

Hello everyone,

I’m working on my Bachelor Thesis and I would like to know what the easiest way is to simulate a SQL-Injection in InsightIDR attack. I installed a webserver on my virtual Machine and tried to attack it from another VM with curl and wget. The problem is, the Platform doesn’t recognise it as a SQL-Injection, ergo I don’t get any Alerts, just Apache-Logs in that I find in Log Search. There is also an agent installed on my VM.

Thank you

mkemmann1 · January 4, 2023, 7:43am

Hi there,

interesting idea. How to trigger an alert via “logger” in Linux or “Write-EventLog” with powershell. Does anybody have some fitting log entries?

Thanks in advance,

Maurice

msakolvaree · August 12, 2024, 9:42am

As I see in detection rules , I wonder insight IDR have no rule about SQL injection/XSS for apache