Securing Web Application from SQL Injection & Session Tracking

Due to the rise and rapid growth of E-Commerce, online purchases have dramatically increased and it caused an explosion in the credit card fraud. As credit card becomes the most popular mode of payment for both online as well as regular purchase, cases of fraud associated with it are also rising. In the existing system the fraud is detected after the fraud is done that is, the fraud is detected after the complaint of the card holder. And so the card holder faced a lot of trouble before the investigation finish. And also as all the transaction is maintained in a log, we need to maintain a huge data. And also now a day's lot of online purchase are made so we don't know the person how is using the card online, we just capture the IP address for verification purpose. So there need a help from the cyber crime to investigate the fraud. To avoid the entire above disadvantage we propose the system to detect the fraud in a best and easy way. This project presents three modules: Website designing, Hacking techniques like SQL Injection attacks for avoiding these techniques Filters and Session Tracker are added.SQL Injection is a technique used to attack databases i.e. gaining unauthorized access to a database, to view or to manipulate restricted data. A filter is an object that performs filtering tasks on either the request to a resource or on the response from a resource, or both. Filters can perform many different types of functions viz. Authentication and Logging and auditing thus assuring card holder a secured transaction.