SQL Server Performance Forum – Threads Archive
SQL INJECTION
Hi Can any one will suggest me some good articles about SQL INJECTON. Silicon MasterSee if this helps:http://www.sqlsecurity.com
They have several whitepapers about that online. —
Frank Kalis
Microsoft SQL Server MVP
http://www.insidesql.de
Heute schon gebloggt?http://www.insidesql.de/blogs
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnsqlmag04/html/InjectionProtection.asp
http://www.securiteam.com/securityreviews/5DP0N1P76E.html Madhivanan Failing to plan is Planning to fail
Frank’s reference is more informative than any other MS related articles, I found it very useful on the terms of security though. Satya SKJ
Microsoft SQL Server MVP
Contributing Editor & Forums Moderator
http://www.SQL-Server-Performance.Com
This posting is provided �AS IS� with no rights for the sake of knowledge sharing.
Few more links
www.ngssoftware.com/papers/advanced_sql_injection.pdf
www.appsecinc.com/presentations/Manipulating_SQL_Server_Using_SQL_Injection.pdf FYI, There is a tool which monitor your site whether it is suspectable for SQL Injection www.sql-server-performance.com/dm_acunetix_wvs.asp —————————————-
http://dineshasanka.blogspot.com/
]]>