36 Chambers – The Legendary Journeys: Execution to the max!

SQL Injection Articles

This is an eight-part series (which actually stretched to 10 parts) on SQL injection:

Part 1 – What and Why?
Part 2 – My First SQL Injection
Part 3 – Attacking Websites
Part 4A – Defending Websites: The Wrong Way
Part 4B – Defending Websites: The Right Way
Part 4C – Bonus Material
Part 5 – Stored Procedures
Part 6 – Attacking Stored Procedures Which Use Dynamic SQL
Part 7 – Defending Dynamic Stored Procedures
Part 8 – Conclusions and Resources

6 Comments »

  1. [...] have created a page on the right-hand bar of this blog for all of the SQL injection articles in this series. Having them all show up in one [...]

    Pingback by SQL Injection, Part 8 Of 8: Conclusions And Resources « 36 Chambers – The Legendary Journeys: Execution to the max! — November 11, 2011 @ 10:27 am

  2. [...] roles, and so on.  They go roughly as far into detail as good technical blog posts (his SQL injection chapter is approximately the same length as my entire series on the topic), and I came out of it knowing [...]

    Pingback by Securing SQL Server: A Review « 36 Chambers – The Legendary Journeys: Execution to the max! — November 16, 2011 @ 6:33 pm

  3. [...] MySQL.com was apparently hit by another SQL injection attack.  If this is true, that’s just sad.  SQL injection should not be that difficult to protect against.  We know how to stop it. [...]

    Pingback by Security Notes, Part 1 « 36 Chambers – The Legendary Journeys: Execution to the max! — December 19, 2011 @ 2:16 pm

  4. [...] half of the vulnerabilities found are SQL Injection attacks.  What’s even more said is that protecting against SQL Injection is not a difficult task.  It just requires sanitizing inputs, parameterizing queries, and limiting dynamic SQL statements. [...]

    Pingback by People, SQL Injection Is Not That Hard To Fix « 36 Chambers – The Legendary Journeys: Execution to the max! — January 15, 2012 @ 7:15 pm

  5. [...] Cherry asks why SQL injection is still a problem.  Check out his book, as well as my series on the topic.  This is not a difficult problem, [...]

    Pingback by Security Notes « 36 Chambers – The Legendary Journeys: Execution to the max! — August 28, 2012 @ 6:00 pm

  6. [...] is entitled Understanding and Preventing SQL Injection.  I’m going to crib some of it from my series, but will try to have at least one new trick for the live [...]

    Pingback by Presenting « 36 Chambers – The Legendary Journeys: Execution to the max! — October 2, 2012 @ 6:16 pm


RSS feed for comments on this post. TrackBack URI

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

The Silver is the New Black Theme Blog at WordPress.com.

Follow

Get every new post delivered to your Inbox.

Join 74 other followers

%d bloggers like this: