SQL Injection Attacks and Defense
View on ScienceDirect

SQL Injection Attacks and Defense

1st Edition - May 5, 2009

Write a review

  • Authors: Justin Clarke, Justin Clarke
  • eBook ISBN: 9780080958576

Purchase options

Purchase options
DRM-free (PDF, EPub, Mobi)
eBook Format Help
Sales tax will be calculated at check-out

Institutional Subscription

Support CenterReturns & Refunds
Free Global Shipping
No minimum order

Description

Winner of the Best Book Bejtlich Read in 2009 award! "SQL injection is probably the number one problem for any server-side application, and this book is unequaled in its coverage." Richard Bejtlich, http://taosecurity.blogspot.com/ SQL injection represents one of the most dangerous and well-known, yet misunderstood, security vulnerabilities on the Internet, largely because there is no central repository of information to turn to for help. This is the only book devoted exclusively to this long-established but recently growing threat. It includes all the currently known information about these attacks and significant insight from its contributing team of SQL injection experts.

Key Features

  • What is SQL injection?-Understand what it is and how it works
  • Find, confirm, and automate SQL injection discovery
  • Discover tips and tricks for finding SQL injection within the code
  • Create exploits using SQL injection
  • Design to avoid the dangers of these attacks

Readership

Penetration testers, IT security consultants and practitioners, and web/software developers

Table of Contents

  • Chapter 1: What is SQL Injection?
    Chapter 2: Testing for SQL Injection
    Chapter 3: Reviewing Code for SQL Injection
    Chapter 4: Exploiting SQL Injection
    Chapter 5: Blind SQL Injection Exploitation
    Chapter 6: Exploiting the Operating System
    Chapter 7: Advanced Topics
    Chapter 8: Code-Level Defenses
    Chapter 9: Platform-Level Defenses
    Chapter 10: References

Product details

  • No. of pages: 496
  • Language: English
  • Copyright: © Syngress 2009
  • Published: May 5, 2009
  • Imprint: Syngress
  • eBook ISBN: 9780080958576

About the Authors

Justin Clarke

Justin Clarke
Justin Clarke (CISSP, CISM, CISA, MCSE, CEH) is a cofounder and executive director of Gotham Digital Science, based in the United Kingdom. He has over ten years of experience in testing the security of networks, web applications, and wireless networks for large financial, retail, and technology clients in the United States, the United Kingdom and New Zealand.

Affiliations and Expertise

Justin Clarke(CISSP, CISM, CISA, MCSE, CEH) is a cofounder and executive director of Gotham Digital Science, based in the United Kingdom. He has over ten years of experience in testing the security of networks, web applications, and wireless networks for large financial, retail, and technology clients in the United States, the United Kingdom and New Zealand.

Justin Clarke

Justin Clarke
Justin Clarke (CISSP, CISM, CISA, MCSE, CEH) is a cofounder and executive director of Gotham Digital Science, based in the United Kingdom. He has over ten years of experience in testing the security of networks, web applications, and wireless networks for large financial, retail, and technology clients in the United States, the United Kingdom and New Zealand.

Affiliations and Expertise

Justin Clarke(CISSP, CISM, CISA, MCSE, CEH) is a cofounder and executive director of Gotham Digital Science, based in the United Kingdom. He has over ten years of experience in testing the security of networks, web applications, and wireless networks for large financial, retail, and technology clients in the United States, the United Kingdom and New Zealand.

Ratings and Reviews

Write a review

There are currently no reviews for "SQL Injection Attacks and Defense"