with Security, sometimes Sacrifies need to be made.

Spacecoast ISSA Meeting Presentation on SQLi

Earlier this month I provided a presentation on SQL Injection to the Spacecoast chapter of ISSA.  The slides are SQL Injection (SQLi) v2 and the corresponding MindMap is SQLi MindMap.

It covers the definitions/types of SQLi, the source of SQLi, evasion techniques, manual test techniques, computer assisted testing (e.g. sqlmap), lastly the the presentation covers some techniques for preventing and defending against SQLi.  The vulnerable platform is a custom PHP/MySQL web application.

Comments are currently closed.