In [1]:
import numpy as np
import pandas as pd
from tensorflow.keras.preprocessing.text import Tokenizer
from tensorflow.keras.preprocessing.sequence import pad_sequences
from tensorflow.keras.models import Model
from tensorflow.keras.layers import Embedding, LSTM, Bidirectional, Dense, Dropout, Conv1D, MaxPooling1D, Flatten, Input, Concatenate
from tensorflow.keras.optimizers import Adam
from sklearn.model_selection import train_test_split
from sklearn.preprocessing import LabelEncoder
from sklearn.utils.class_weight import compute_class_weight
from sklearn.metrics import accuracy_score, precision_score, recall_score, f1_score

# Load the dataset
data = pd.read_csv('Modified_SQL_Dataset.csv')

# Preprocessing - Clean and lower case the SQL queries
data['Query'] = data['Query'].str.lower().replace('[^a-zA-Z0-9\\s]', '', regex=True)
texts = data['Query'].astype(str).tolist()

# Tokenization
tokenizer = Tokenizer()
tokenizer.fit_on_texts(texts)
sequences = tokenizer.texts_to_sequences(texts)

# Padding
max_len = 200  # Adjust this based on the dataset analysis
padded_sequences = pad_sequences(sequences, maxlen=max_len, padding='post')

# Encoding labels (Assume labels are whether the query follows best security practices)
label_encoder = LabelEncoder()
labels = label_encoder.fit_transform(data['Label'])  # 'Label' should indicate secure/unsafe practices

# Train-test split
X_train, X_test, y_train, y_test = train_test_split(padded_sequences, labels, test_size=0.2, random_state=42)

# Compute class weights for imbalanced data (if applicable)
class_weights = compute_class_weight('balanced', classes=np.unique(y_train), y=y_train)
class_weight_dict = dict(enumerate(class_weights))

# Define input layer
vocab_size = len(tokenizer.word_index) + 1
input_layer = Input(shape=(max_len,))

# Embedding layer (shared by both CNN and BiLSTM)
embedding_layer = Embedding(input_dim=vocab_size, output_dim=64, input_length=max_len)(input_layer)

# CNN Branch
cnn_branch = Conv1D(filters=128, kernel_size=5, activation='relu', padding='same')(embedding_layer)
cnn_branch = MaxPooling1D(pool_size=2)(cnn_branch)
cnn_branch = Flatten()(cnn_branch)

# BiLSTM Branch
bilstm_branch = Bidirectional(LSTM(128, return_sequences=True))(embedding_layer)
bilstm_branch = Dropout(0.4)(bilstm_branch)
bilstm_branch = Bidirectional(LSTM(64))(bilstm_branch)
bilstm_branch = Dropout(0.4)(bilstm_branch)

# Concatenate CNN and BiLSTM outputs
merged = Concatenate()([cnn_branch, bilstm_branch])

# Fully connected layers
dense_layer = Dense(64, activation='relu')(merged)
dense_layer = Dropout(0.3)(dense_layer)
output_layer = Dense(1, activation='sigmoid')(dense_layer)  # Binary classification (secure/unsafe)

# Define the hybrid model
model = Model(inputs=input_layer, outputs=output_layer)

# Compile the model
optimizer = Adam(learning_rate=0.0005)
model.compile(optimizer=optimizer, loss='binary_crossentropy', metrics=['accuracy'])

# Train the model
history = model.fit(
    X_train, y_train,
    epochs=5,
    batch_size=64,
    validation_split=0.2,
    class_weight=class_weight_dict,
    verbose=1
)

# Evaluate the model on the test set
loss, accuracy = model.evaluate(X_test, y_test)
print(f'Test Loss: {loss:.4f}, Test Accuracy: {accuracy:.4f}')

# Predictions
y_pred = model.predict(X_test)
y_pred = (y_pred > 0.5).astype(int)  # Convert probabilities to binary outputs

# Compute metrics
precision = precision_score(y_test, y_pred)
recall = recall_score(y_test, y_pred)
f1 = f1_score(y_test, y_pred)

print(f'Precision: {precision:.4f}')
print(f'Recall: {recall:.4f}')
print(f'F1 Score: {f1:.4f}')

# Example Queries for Prevention Techniques
prevention_examples = {
    "Prepared Statements": [
        "SELECT * FROM users WHERE username = ?",
        "INSERT INTO users (username, password) VALUES (?, ?)"
    ],
    "Stored Procedures": [
        "EXEC GetUserData @username = ?",
        "EXEC UpdatePassword @user_id = ?, @new_password = ?"
    ],
    "Input Validation": [
        "SELECT * FROM users WHERE username = 'user_input' AND password = 'password_input'",
        "SELECT * FROM users WHERE username = 'admin' AND password = 'password123'"
    ],
    "Limiting Privileges": [
        "SELECT * FROM users WHERE username = 'user_input' AND privilege_level = 'user'",
        "SELECT * FROM orders WHERE order_id = ?"
    ],
    "Encrypting Data": [
        "SELECT username, encrypted_password FROM users WHERE username = 'user_input'",
        "INSERT INTO users (username, encrypted_password) VALUES (?, ?)"
    ]
}

# Predict prevention techniques for example queries
for prevention, examples in prevention_examples.items():
    print(f"\nPredictions for {prevention} Queries:")
    for query in examples:
        query_seq = tokenizer.texts_to_sequences([query])
        query_padded = pad_sequences(query_seq, maxlen=max_len, padding='post')
        prediction = model.predict(query_padded)
        result = 'Safe' if prediction > 0.5 else 'Unsafe'
        print(f"Query: {query} - Prediction: {result}")




Epoch 1/5
[1m310/310[0m [32m━━━━━━━━━━━━━━━━━━━━[0m[37m[0m [1m332s[0m 1s/step - accuracy: 0.8740 - loss: 0.2834 - val_accuracy: 0.9933 - val_loss: 0.0349
Epoch 2/5
[1m310/310[0m [32m━━━━━━━━━━━━━━━━━━━━[0m[37m[0m [1m318s[0m 1s/step - accuracy: 0.9955 - loss: 0.0281 - val_accuracy: 0.9939 - val_loss: 0.0278
Epoch 3/5
[1m310/310[0m [32m━━━━━━━━━━━━━━━━━━━━[0m[37m[0m [1m315s[0m 1s/step - accuracy: 0.9960 - loss: 0.0228 - val_accuracy: 0.9939 - val_loss: 0.0364
Epoch 4/5
[1m310/310[0m [32m━━━━━━━━━━━━━━━━━━━━[0m[37m[0m [1m321s[0m 1s/step - accuracy: 0.9987 - loss: 0.0079 - val_accuracy: 0.9941 - val_loss: 0.0306
Epoch 5/5
[1m310/310[0m [32m━━━━━━━━━━━━━━━━━━━━[0m[37m[0m [1m319s[0m 1s/step - accuracy: 0.9993 - loss: 0.0047 - val_accuracy: 0.9931 - val_loss: 0.0381
[1m194/194[0m [32m━━━━━━━━━━━━━━━━━━━━[0m[37m[0m [1m33s[0m 169ms/step - accuracy: 0.9955 - loss: 0.0349
Test Loss: 0.0349, Test Accuracy: 0.9950
[1m194/194[0m [32m━━━━━━━━━━━━━━━━