KripyIDS: A Web-based IDS that Detects the Most Common Web Attacks

Abstract

The growing landscape of web application attacks, coupled with an increased reliance on digital technologies, underscores the urgency for robust intrusion detection methodologies that address the underlying attacks. This bachelor's thesis delves into the mechanics and detection techniques associated with six of the most prevalent types of web application attacks, namely SQL Injection, Cross Site Scripting, Local File Inclusion, Remote File Inclusion, PHP Injection, and OS Command Injection. The principal contribution of this thesis is the development of KripyIDS, a host-based intrusion detection system designed to recognize these common attack patterns covering a large percentile in the scope of web attacks. It leverages proven detection methodologies and serves as a framework that provides the potential to host any detector for any type of web attack.