Hossein Yavari, profile picture
Uploaded byHossein Yavari
PPTX, PDF194 views

SQL Injection in JAVA

This document discusses SQL injection in Java applications. It defines SQL injection as a vulnerability that allows attackers to hijack databases. The document covers different types of SQL injections like boolean-based, union-based, time-based, and error-based injections. It provides examples of SQL injection vulnerabilities in Java code and how to prevent them by using prepared statements with parameterized queries, stored procedures, input validation, escaping user input, enforcing least privilege, and using tools to detect vulnerabilities.

Download to read offline
Hossein Yavari SQL Injection in JAVA March 2022
What We Learn? • What is the injection attack? • Types of injection attacks • SQL Injection • Type of SQLi • SQLi in JAVA • How to prevent SQLi in JAVA?
What is the Injection? • To trick an application into interpreting data that includes unintended commands. • Interpreters: • Interpret strings as commands • SQL, shell, etc. Input data from the application is executed as code by the interpreter.
Types of Injection Attacks • SQL Injection (SQLi) • Cross-Site Scripting (XSS) • CCS Injection • LDAP Injection • SMTP/IMAP Command Injection
SQL Injection • Vulnerability in the code of websites and web apps that allows attackers to hijack back-end processes and access, extract, and delete confidential information from databases. • Successful SQLi attacks: • Log in to an app or a website front end without a password. • Access, extract, and delete stored data from secured databases. • Create their own database records or modify existing records, opening the door for further attacks.
SQL Injection (Cont.) • App sends form to user. • Attacker submits form with SQL exploit data. • Application builds string with exploit data. • Application sends SQL query to DB. • DB executes query, including exploit, sends data back to application. • Application returns data to user.
Type of SQLi • Boolean Based • Union Based Input Data> 2 or 1=1 SQL Query> select first_name, last_name from tbl_employee where empId=2 or 1=1 Input Data> 2 union select username, password from tbluser SQL Query> Select first_name, last_name from tbl_employee where empId=2 union select username, password from tbluser
Type of SQLi (Cont.) • Time Based • Error Based • Attacker injects SQL which are syntactically incorrect so database server will return error code and messages which can be used to get database and system information. • Blind • Bad actors query the database for true or false questions, then determine the answer based on the response. Input Data> 2 + SLEEP(5) SQL Query> select emp_id, first_name, last_name from tbl_employee where empId=2 + SLEEP(5)
SQL Injection Sample String query = “SELECT Username, UserID, Password FROM Users WHERE username =“ + user + “ AND password =“ + password; query = “SELECT Username, UserID, Password FROM Users WHERE username = 'bob' AND Password = ‘********‘”
SQL Injection Sample (Cont.) String query = “SELECT Username, UserID, Password FROM Users WHERE username =“ + user + “ AND password =“ + password; query1 = “SELECT Username, UserID, Password FROM Users WHERE Username = 'bob’-- ’ AND Password = ‘‘” query = “SELECT Username, UserID, Password FROM Users WHERE Username = 'bob’; DROP Users-- ’ AND Password = ‘‘” B O O M
SQL Injection Sample (Cont.) • Boolean SQLi: SELECT * FROM projects WHERE user_id = 10 SELECT * FROM projects WHERE user_id = 10 OR 1 = 1
SQLi in JAVA
SQLi in JAVA (Cont.) http://localhost:8080/filterUserJdbcUnSafe name=="Bilbo' or '1' = '1"
SQLi in JAVA (Cont.) http http://localhost:8080/filterUserGlobalAccessUnSafe name=="Bilbo' union all select 1, concat(review,'-----',rating),review, 'STAFF' from management.employee_review where '1'='1"
How to Prevent SQLi Vulnerabilities • Use Prepared Statements with Parameterized Queries  In JAVA: PreparedStatement()  The question mark (?) in the above query is called a positional parameter.
How to Prevent SQLi Vulnerabilities (Cont.) • Use Stored Procedures  A stored procedure is defined and stored in the database itself, and then called from the application.  In JAVA: CallableStatement, implementation of the stored procedure interface, to execute the same database query.  The sp_getAccountBalance stored procedure would have to be predefined in the database and implement the same functionality as the query.
How to Prevent SQLi Vulnerabilities (Cont.) • Allowlist Input Validation  Parameter values should be mapped to the legal/expected table or column names to make sure unvalidated user input doesn't end up in the query.
How to Prevent SQLi Vulnerabilities (Cont.) • Escaping All User-Supplied Input  This technique is to escape user input before putting it in a query.  It is very database specific in its implementation.  Example: When wrapped by encodeForSql(...), no part of the user input will be considered as code
How to Prevent SQLi Vulnerabilities (Cont.) • Enforce the Principle of Least Privilege  Minimize the privileges assigned to every database account in your environment.  Do not assign DBA or admin type access rights to your application accounts.  Limit the application’s access to the database via permissions & grants.
How to Prevent SQLi Vulnerabilities (Cont.) • Use tools to find SQLi vulnerabilities in your application  Tools that automate the process of detecting and exploiting SQL injection flaws and taking over of database servers.  Example: sqlmap https://github.com/sqlmapproject/sqlmap
21
22

More Related Content

PPT
iOS Application Pentesting
byn|u - The Open Security Community
 
PPTX
Vulnerable_and_outdated_components_suman.pptx
bySuman Astani
 
PPTX
OWASP ZAP Workshop for QA Testers
byJavan Rasokat
 
PPTX
공간정보거점대학 PostGIS 고급과정
byJungHwan Yun
 
PPTX
Adli Bilişim İnceleme Süreçleri
byİsmail ŞEN
 
PPT
7162090-JES2.ppt
byMuthyamRaviteja
 
PDF
[오픈소스컨설팅] EFK Stack 소개와 설치 방법
byOpen Source Consulting
 
PDF
Advanced JS Deobfuscation
byMinded Security
 
iOS Application Pentesting
byn|u - The Open Security Community
 
Vulnerable_and_outdated_components_suman.pptx
bySuman Astani
 
OWASP ZAP Workshop for QA Testers
byJavan Rasokat
 
공간정보거점대학 PostGIS 고급과정
byJungHwan Yun
 
Adli Bilişim İnceleme Süreçleri
byİsmail ŞEN
 
7162090-JES2.ppt
byMuthyamRaviteja
 
[오픈소스컨설팅] EFK Stack 소개와 설치 방법
byOpen Source Consulting
 
Advanced JS Deobfuscation
byMinded Security
 

What's hot

PPTX
Elk stack
byJilles van Gurp
 
PPTX
Log management with ELK
byGeert Pante
 
PDF
AV/DF Advanced Security Option
byDLT Solutions
 
PDF
Automate Oracle database patches and upgrades using Fleet Provisioning and Pa...
byNelson Calero
 
PPTX
Basic principles of Git
byphuongvohuy
 
PPTX
Adli Bilişim ve Adli Bilişim Araçları
byAhmet Gürel
 
PDF
Create Directory Under ASM Diskgroup
byArun Sharma
 
PPTX
Building Advanced Analytics Pipelines with Azure Databricks
byLace Lofranco
 
PPTX
ELK Stack
byPhuc Nguyen
 
PPTX
Elastic Stack Introduction
byVikram Shinde
 
PPTX
Elastic stack Presentation
byAmr Alaa Yassen
 
PPT
Sql Server Performance Tuning
byBala Subra
 
PPTX
Delta Lake with Azure Databricks
byDustin Vannoy
 
PDF
E-Mail Forensics
byBGA Cyber Security
 
PDF
How To Configure SNMP Logging on RHEL 7
byVCP Muthukrishna
 
PPTX
Intro to the Alfresco Public API
byJeff Potts
 
PPTX
PGEncryption_Tutorial
byVibhor Kumar
 
PDF
Log Yonetimi ve SIEM Kontrol Listesi
byErtugrul Akbas
 
PDF
[OpenInfra Days Korea 2018] Day 1 - T4-7: "Ceph 스토리지, PaaS로 서비스 운영하기"
byOpenStack Korea Community
 
PPTX
Log analysis using elk
byRushika Shah
 
Elk stack
byJilles van Gurp
 
Log management with ELK
byGeert Pante
 
AV/DF Advanced Security Option
byDLT Solutions
 
Automate Oracle database patches and upgrades using Fleet Provisioning and Pa...
byNelson Calero
 
Basic principles of Git
byphuongvohuy
 
Adli Bilişim ve Adli Bilişim Araçları
byAhmet Gürel
 
Create Directory Under ASM Diskgroup
byArun Sharma
 
Building Advanced Analytics Pipelines with Azure Databricks
byLace Lofranco
 
ELK Stack
byPhuc Nguyen
 
Elastic Stack Introduction
byVikram Shinde
 
Elastic stack Presentation
byAmr Alaa Yassen
 
Sql Server Performance Tuning
byBala Subra
 
Delta Lake with Azure Databricks
byDustin Vannoy
 
E-Mail Forensics
byBGA Cyber Security
 
How To Configure SNMP Logging on RHEL 7
byVCP Muthukrishna
 
Intro to the Alfresco Public API
byJeff Potts
 
PGEncryption_Tutorial
byVibhor Kumar
 
Log Yonetimi ve SIEM Kontrol Listesi
byErtugrul Akbas
 
[OpenInfra Days Korea 2018] Day 1 - T4-7: "Ceph 스토리지, PaaS로 서비스 운영하기"
byOpenStack Korea Community
 
Log analysis using elk
byRushika Shah
 

Similar to SQL Injection in JAVA

PPTX
03. sql and other injection module v17
byEoin Keary
 
PDF
Ijcatr04041018
byEditor IJCATR
 
PPTX
Sql injection
byMehul Boghra
 
PPT
Sql injection
byNikunj Dhameliya
 
PDF
SQL injection Colombo Cybersecurity Meetup
byJanith Malinga
 
PDF
How to identify and prevent SQL injection
byEguardian Global Services
 
PDF
Blind sql injection
byKagi Adrian Zinelli
 
PDF
Blind sql injection
byKagi Adrian Zinelli
 
PPTX
cybersecurity and sql injection for students
byVeenaShree20
 
PPTX
Sql injection
bySuraj Tiwari
 
ODT
Sql injection
byAshok Kumar
 
PPTX
SQL INJECTION
byMentorcs
 
PPTX
SQLi for Security Champions
byPetraVukmirovic
 
PPTX
SQL Injection attack
byRayudu Babu
 
PDF
SQL Injection
byMagno Logan
 
PDF
SQL Injection Attack Guide for ethical hacking
byAyan Live Rourkela
 
PPTX
SQL Injection Introduction and Prevention
byMohammed Fazuluddin
 
PDF
Prevention of SQL Injection Attack in Web Application with Host Language
byIRJET Journal
 
PPT
Sql injection
byNitish Kumar
 
PPTX
SQL INJECTION
byZiaullah Khan
 
03. sql and other injection module v17
byEoin Keary
 
Ijcatr04041018
byEditor IJCATR
 
Sql injection
byMehul Boghra
 
Sql injection
byNikunj Dhameliya
 
SQL injection Colombo Cybersecurity Meetup
byJanith Malinga
 
How to identify and prevent SQL injection
byEguardian Global Services
 
Blind sql injection
byKagi Adrian Zinelli
 
Blind sql injection
byKagi Adrian Zinelli
 
cybersecurity and sql injection for students
byVeenaShree20
 
Sql injection
bySuraj Tiwari
 
Sql injection
byAshok Kumar
 
SQL INJECTION
byMentorcs
 
SQLi for Security Champions
byPetraVukmirovic
 
SQL Injection attack
byRayudu Babu
 
SQL Injection
byMagno Logan
 
SQL Injection Attack Guide for ethical hacking
byAyan Live Rourkela
 
SQL Injection Introduction and Prevention
byMohammed Fazuluddin
 
Prevention of SQL Injection Attack in Web Application with Host Language
byIRJET Journal
 
Sql injection
byNitish Kumar
 
SQL INJECTION
byZiaullah Khan
 

More from Hossein Yavari

PDF
What is Matroska?
byHossein Yavari
 
PDF
SIPREC RTPEngine Media Forking
byHossein Yavari
 
PDF
Windows Forensics
byHossein Yavari
 
PPTX
SIP over TLS
byHossein Yavari
 
PPTX
Desjardins Data Breach
byHossein Yavari
 
PDF
Introduction to Metasploit
byHossein Yavari
 
PDF
Which IT Certification is Better for You?
byHossein Yavari
 
PDF
Disassembly Using IDA
byHossein Yavari
 
PPTX
Introduction to Snort
byHossein Yavari
 
PDF
DLL Injection
byHossein Yavari
 
PPTX
Malware Static Analysis
byHossein Yavari
 
PDF
Creativity and Role of the Leaders
byHossein Yavari
 
PDF
IPsec for IMS
byHossein Yavari
 
PDF
eSIM Deep Dive
byHossein Yavari
 
PDF
Yeastar Technical Training Course
byHossein Yavari
 
PDF
SENA Cloud UC
byHossein Yavari
 
PDF
FreePBX Disaster Recovery
byHossein Yavari
 
PDF
eSIM Overview
byHossein Yavari
 
PDF
LTE Architecture Overview
byHossein Yavari
 
PDF
Introduction to DIAMETER
byHossein Yavari
 
What is Matroska?
byHossein Yavari
 
SIPREC RTPEngine Media Forking
byHossein Yavari
 
Windows Forensics
byHossein Yavari
 
SIP over TLS
byHossein Yavari
 
Desjardins Data Breach
byHossein Yavari
 
Introduction to Metasploit
byHossein Yavari
 
Which IT Certification is Better for You?
byHossein Yavari
 
Disassembly Using IDA
byHossein Yavari
 
Introduction to Snort
byHossein Yavari
 
DLL Injection
byHossein Yavari
 
Malware Static Analysis
byHossein Yavari
 
Creativity and Role of the Leaders
byHossein Yavari
 
IPsec for IMS
byHossein Yavari
 
eSIM Deep Dive
byHossein Yavari
 
Yeastar Technical Training Course
byHossein Yavari
 
SENA Cloud UC
byHossein Yavari
 
FreePBX Disaster Recovery
byHossein Yavari
 
eSIM Overview
byHossein Yavari
 
LTE Architecture Overview
byHossein Yavari
 
Introduction to DIAMETER
byHossein Yavari
 

Recently uploaded

PPTX
Lifecycle of Automated Testing: A Step-by-Step Journey from Planning to Repor...
bySophie Lane
 
PPT
Comp Programming Characters and Strings
byAlonTashobya
 
PPTX
Building smarter with AI - From Idea to Market at Warp Speed
byLuca Grulla
 
PPTX
How John started to like TDD (instead of hating it) (Devcon, October'25)
byNacho Cougil
 
PDF
One HTTPS server in Modern Pascal to Rule Them All
byArnaud Bouchez
 
PDF
How White Label Analytics Platforms Are Transforming Data Insights.pdf
byVarsha Nayak
 
PDF
Google Developer Groups on Campus CSUEB: Intro to Google Agent Development Kit
byugoti
 
PDF
Evolution and Examples of Java Features, from Java 1.7 to Java 25
byYann-Gaël Guéhéneuc
 
PDF
product realizatio n software.pdf
byJames Cameron
 
PDF
Comprehensive Logging with mORMot 2 on Delphi and FPC
byArnaud Bouchez
 
PDF
Alluxio Webinar | Alluxio + S3 A Tiered Architecture for Latency-Critical, Se...
byAlluxio, Inc.
 
PDF
VADY Smart Decision-Making — Combining AI Precision with Human Expertise
byNewFangledVision
 
PDF
Master the Critical Path Method (CPM) for Smarter Project Scheduling
byOrangescrum
 
PDF
Chpetwr two Health Survey for - (2).pdf
byAhmedAlhadiAbduselam
 
PDF
Build Web, Mobile & Desktop Apps with Flutter
byShiv Technolabs Pvt. Ltd.
 
PPTX
Digital Twins for RolandRust U Maryland 20251030 v14.pptx
byhome
 
PDF
How App Developers in London UK Empower Digital Businesses – US APP Developer...
byIndia App Developer
 
PDF
PyData Paris keynote: Big ideas shaping scientific Python: the quest for perf...
byRalf Gommers
 
PDF
The Ultimate Guide to Software POC Development and Validation
byShiv Technolabs Pvt. Ltd.
 
PDF
git - from commit to merge - semcomp beta 2018 workshop
byJoao Marins
 
Lifecycle of Automated Testing: A Step-by-Step Journey from Planning to Repor...
bySophie Lane
 
Comp Programming Characters and Strings
byAlonTashobya
 
Building smarter with AI - From Idea to Market at Warp Speed
byLuca Grulla
 
How John started to like TDD (instead of hating it) (Devcon, October'25)
byNacho Cougil
 
One HTTPS server in Modern Pascal to Rule Them All
byArnaud Bouchez
 
How White Label Analytics Platforms Are Transforming Data Insights.pdf
byVarsha Nayak
 
Google Developer Groups on Campus CSUEB: Intro to Google Agent Development Kit
byugoti
 
Evolution and Examples of Java Features, from Java 1.7 to Java 25
byYann-Gaël Guéhéneuc
 
product realizatio n software.pdf
byJames Cameron
 
Comprehensive Logging with mORMot 2 on Delphi and FPC
byArnaud Bouchez
 
Alluxio Webinar | Alluxio + S3 A Tiered Architecture for Latency-Critical, Se...
byAlluxio, Inc.
 
VADY Smart Decision-Making — Combining AI Precision with Human Expertise
byNewFangledVision
 
Master the Critical Path Method (CPM) for Smarter Project Scheduling
byOrangescrum
 
Chpetwr two Health Survey for - (2).pdf
byAhmedAlhadiAbduselam
 
Build Web, Mobile & Desktop Apps with Flutter
byShiv Technolabs Pvt. Ltd.
 
Digital Twins for RolandRust U Maryland 20251030 v14.pptx
byhome
 
How App Developers in London UK Empower Digital Businesses – US APP Developer...
byIndia App Developer
 
PyData Paris keynote: Big ideas shaping scientific Python: the quest for perf...
byRalf Gommers
 
The Ultimate Guide to Software POC Development and Validation
byShiv Technolabs Pvt. Ltd.
 
git - from commit to merge - semcomp beta 2018 workshop
byJoao Marins
 

SQL Injection in JAVA

  • 1.
    Hossein Yavari SQL Injectionin JAVA March 2022
  • 2.
    What We Learn? •What is the injection attack? • Types of injection attacks • SQL Injection • Type of SQLi • SQLi in JAVA • How to prevent SQLi in JAVA?
  • 3.
    What is theInjection? • To trick an application into interpreting data that includes unintended commands. • Interpreters: • Interpret strings as commands • SQL, shell, etc. Input data from the application is executed as code by the interpreter.
  • 4.
    Types of InjectionAttacks • SQL Injection (SQLi) • Cross-Site Scripting (XSS) • CCS Injection • LDAP Injection • SMTP/IMAP Command Injection
  • 5.
    SQL Injection • Vulnerabilityin the code of websites and web apps that allows attackers to hijack back-end processes and access, extract, and delete confidential information from databases. • Successful SQLi attacks: • Log in to an app or a website front end without a password. • Access, extract, and delete stored data from secured databases. • Create their own database records or modify existing records, opening the door for further attacks.
  • 6.
    SQL Injection (Cont.) •App sends form to user. • Attacker submits form with SQL exploit data. • Application builds string with exploit data. • Application sends SQL query to DB. • DB executes query, including exploit, sends data back to application. • Application returns data to user.
  • 7.
    Type of SQLi •Boolean Based • Union Based Input Data> 2 or 1=1 SQL Query> select first_name, last_name from tbl_employee where empId=2 or 1=1 Input Data> 2 union select username, password from tbluser SQL Query> Select first_name, last_name from tbl_employee where empId=2 union select username, password from tbluser
  • 8.
    Type of SQLi(Cont.) • Time Based • Error Based • Attacker injects SQL which are syntactically incorrect so database server will return error code and messages which can be used to get database and system information. • Blind • Bad actors query the database for true or false questions, then determine the answer based on the response. Input Data> 2 + SLEEP(5) SQL Query> select emp_id, first_name, last_name from tbl_employee where empId=2 + SLEEP(5)
  • 9.
    SQL Injection Sample Stringquery = “SELECT Username, UserID, Password FROM Users WHERE username =“ + user + “ AND password =“ + password; query = “SELECT Username, UserID, Password FROM Users WHERE username = 'bob' AND Password = ‘********‘”
  • 10.
    SQL Injection Sample(Cont.) String query = “SELECT Username, UserID, Password FROM Users WHERE username =“ + user + “ AND password =“ + password; query1 = “SELECT Username, UserID, Password FROM Users WHERE Username = 'bob’-- ’ AND Password = ‘‘” query = “SELECT Username, UserID, Password FROM Users WHERE Username = 'bob’; DROP Users-- ’ AND Password = ‘‘” B O O M
  • 11.
    SQL Injection Sample(Cont.) • Boolean SQLi: SELECT * FROM projects WHERE user_id = 10 SELECT * FROM projects WHERE user_id = 10 OR 1 = 1
  • 12.
  • 13.
    SQLi in JAVA(Cont.) http://localhost:8080/filterUserJdbcUnSafe name=="Bilbo' or '1' = '1"
  • 14.
    SQLi in JAVA(Cont.) http http://localhost:8080/filterUserGlobalAccessUnSafe name=="Bilbo' union all select 1, concat(review,'-----',rating),review, 'STAFF' from management.employee_review where '1'='1"
  • 15.
    How to PreventSQLi Vulnerabilities • Use Prepared Statements with Parameterized Queries  In JAVA: PreparedStatement()  The question mark (?) in the above query is called a positional parameter.
  • 16.
    How to PreventSQLi Vulnerabilities (Cont.) • Use Stored Procedures  A stored procedure is defined and stored in the database itself, and then called from the application.  In JAVA: CallableStatement, implementation of the stored procedure interface, to execute the same database query.  The sp_getAccountBalance stored procedure would have to be predefined in the database and implement the same functionality as the query.
  • 17.
    How to PreventSQLi Vulnerabilities (Cont.) • Allowlist Input Validation  Parameter values should be mapped to the legal/expected table or column names to make sure unvalidated user input doesn't end up in the query.
  • 18.
    How to PreventSQLi Vulnerabilities (Cont.) • Escaping All User-Supplied Input  This technique is to escape user input before putting it in a query.  It is very database specific in its implementation.  Example: When wrapped by encodeForSql(...), no part of the user input will be considered as code
  • 19.
    How to PreventSQLi Vulnerabilities (Cont.) • Enforce the Principle of Least Privilege  Minimize the privileges assigned to every database account in your environment.  Do not assign DBA or admin type access rights to your application accounts.  Limit the application’s access to the database via permissions & grants.
  • 20.
    How to PreventSQLi Vulnerabilities (Cont.) • Use tools to find SQLi vulnerabilities in your application  Tools that automate the process of detecting and exploiting SQL injection flaws and taking over of database servers.  Example: sqlmap https://github.com/sqlmapproject/sqlmap
  • 21.
  • 22.

Editor's Notes

  • #5 Cross-site scripting (XSS) is the injection of client-side scripts into web applications, which is enabled by a lack of validating and correctly encoding user input. The malicious scripts are executed within the end user’s browser and enable various attacks, from stealing the end-users session to monitoring and altering all actions performed by the end-user on the affected website. CSS: During such an attack, invalid signals are sent by attackers in the handshake session between servers and clients
  • #9  Blind SQL Injection Typically more sophisticated and difficult to perform than other varieties of injections, attackers perform blind SQL injections when generic error messages are received from the target. Blind SQL injections differentiate themselves from regular SQL injections in the method that they retrieve information from the database. In this technique, bad actors query the database for true or false questions, then determine the answer based on the response, as well as the time it takes to retrieve a server response when using it with time-based attacks. Error-Based SQL Injection In an error based SQL injection, attackers exploit database errors from a web page or application that have been triggered by unsanitized inputs. During an attack, this technique uses error messages to return full query results and reveal confidential information from the database. This method can also be used to identify if a website or web application is vulnerable and obtain additional information to restructure malicious queries.
  • #18 As a rule of thumb, don’t trust user-submitted data. You can perform allowlist validation to test user input against an existing set of known, approved, and defined input. Whenever data is received that doesn’t meet the assigned values, it is rejected—protecting the application or website from malicious SQL injections in the process.
  • #19 This technique works like this. Each DBMS supports one or more character escaping schemes specific to certain kinds of queries. If you then escape all user supplied input using the proper escaping scheme for the database you are using, the DBMS will not confuse that input with SQL code written by the developer, thus avoiding any possible SQL injection vulnerabilities.
  • #20 This technique works like this. Each DBMS supports one or more character escaping schemes specific to certain kinds of queries. If you then escape all user supplied input using the proper escaping scheme for the database you are using, the DBMS will not confuse that input with SQL code written by the developer, thus avoiding any possible SQL injection vulnerabilities.
  • #21 This technique works like this. Each DBMS supports one or more character escaping schemes specific to certain kinds of queries. If you then escape all user supplied input using the proper escaping scheme for the database you are using, the DBMS will not confuse that input with SQL code written by the developer, thus avoiding any possible SQL injection vulnerabilities.