Deep Dive on Injection Attacks:
Explained the concept of Injection attacks, especially SQL, NoSQL, OS Command, and LDAP injection.
Demonstrated real-world examples of SQL Injection using safe, simulated environments.
Discussed the business impact of injection vulnerabilities including data breaches, loss of reputation, and legal consequences.
Shared best practices for prevention:
Using parameterized queries (prepared statements)
Input validation and sanitation
Principle of least privilege
Use of ORM frameworks and security libraries
Increased awareness of modern web application vulnerabilities and their impact.
Hands-on understanding of how injection attacks are executed and how they can be prevented.
Enhanced ability to identify insecure coding patterns and adopt secure development practices.
95% of attendees found the session βvery usefulβ or βextremely usefulβ.
Suggestions included more hands-on labs and live demos in future events.
Participants requested follow-up workshops on Secure Coding and Penetration Testing.
The session successfully raised awareness about the OWASP Top 10, especially the persistent threat of Injection attacks. It empowered attendees with knowledge and tools to write more secure code and contribute to a safer internet. Future sessions will aim to include more interactive labs and explore other vulnerabilities in-depth.
KPRIET β An AI Integrated Campus
Preparing future-ready engineers with AI-integrated teaching and learning. KPRIET integrates Artificial Intelligence across teaching, learning, research and innovation to create a smarter, future-ready campus experience for students and faculty.
