Book description
Winner of the Best Book Bejtlich Read in 2009 award!
"SQL injection is probably the number one problem for any server-side application, and this book is unequaled in its coverage." Richard Bejtlich, http://taosecurity.blogspot.com/
SQL injection represents one of the most dangerous and well-known, yet misunderstood, security vulnerabilities on the Internet, largely because there is no central repository of information to turn to for help. This is the only book devoted exclusively to this long-established but recently growing threat. It includes all the currently known information about these attacks and significant insight from its contributing team of SQL injection experts.
- What is SQL injection?-Understand what it is and how it works
- Find, confirm, and automate SQL injection discovery
- Discover tips and tricks for finding SQL injection within the code
- Create exploits using SQL injection
- Design to avoid the dangers of these attacks
Table of contents
- Cover image
- Table of Contents
- Copyright
- Lead Author and Technical Editor
- Contributing Authors
- Chapter 1. What Is SQL Injection?
- Chapter 2. Testing for SQL Injection
- Chapter 3. Reviewing Code for SQL Injection
- Chapter 4. Exploiting SQL Injection
- Chapter 5. Blind SQL Injection Exploitation
- Chapter 6. Exploiting the Operating System
- Chapter 7. Advanced Topics
- Chapter 8. Code-Level Defenses
- Chapter 9. Platform-Level Defenses
- Chapter 10. References
- Index
Product information
- Title: SQL Injection Attacks and Defense
- Author(s):
- Release date: May 2009
- Publisher(s): Syngress
- ISBN: 9780080958576
You might also like
video
SQL Injection Attacks: Protect Your System from Vulnerabilities
This video takes you through everything you need to understand SQL injection and how to prepare …
book
SQL Injection Defenses
This Short Cut introduces you to how SQL injection vulnerabilities work, what makes applications vulnerable, and …
book
SQL Injection Strategies
Learn to exploit vulnerable database applications using SQL injection tools and techniques, while understanding how to …
book
XSS Attacks
A cross site scripting attack is a very specific type of attack on a web application. …