Save up to 30% on Elsevier print and eBooks with free shipping. No promo code needed.
Save up to 30% on print and eBooks.
SQL Injection Attacks and Defense
1st Edition - May 5, 2009
Author: Justin Clarke-Salt
Language: English
eBook ISBN:9780080958576
9 7 8 - 0 - 0 8 - 0 9 5 8 5 7 - 6
Winner of the Best Book Bejtlich Read in 2009 award! "SQL injection is probably the number one problem for any server-side application, and this book is unequaled in its co…Read more
Purchase options
LIMITED OFFER
Save 50% on book bundles
Immediately download your ebook while waiting for your print delivery. No promo code is needed.
Winner of the Best Book Bejtlich Read in 2009 award!
"SQL injection is probably the number one problem for any server-side application, and this book is unequaled in its coverage." Richard Bejtlich, http://taosecurity.blogspot.com/
SQL injection represents one of the most dangerous and well-known, yet misunderstood, security vulnerabilities on the Internet, largely because there is no central repository of information to turn to for help. This is the only book devoted exclusively to this long-established but recently growing threat. It includes all the currently known information about these attacks and significant insight from its contributing team of SQL injection experts.
What is SQL injection?-Understand what it is and how it works
Find, confirm, and automate SQL injection discovery
Discover tips and tricks for finding SQL injection within the code
Create exploits using SQL injection
Design to avoid the dangers of these attacks
Penetration testers, IT security consultants and practitioners, and web/software developers
Chapter 1: What is SQL Injection? Chapter 2: Testing for SQL Injection Chapter 3: Reviewing Code for SQL Injection Chapter 4: Exploiting SQL Injection Chapter 5: Blind SQL Injection Exploitation Chapter 6: Exploiting the Operating System Chapter 7: Advanced Topics Chapter 8: Code-Level Defenses Chapter 9: Platform-Level Defenses Chapter 10: References
No. of pages: 496
Language: English
Edition: 1
Published: May 5, 2009
Imprint: Syngress
eBook ISBN: 9780080958576
JC
Justin Clarke-Salt
Justin Clarke (CISSP, CISM, CISA, MCSE, CEH) is a cofounder and executive director of Gotham Digital Science, based in the United Kingdom. He has over ten years of experience in testing the security of networks, web applications, and wireless networks for large financial, retail, and technology clients in the United States, the United Kingdom and New Zealand.
Affiliations and expertise
Justin Clarke(CISSP, CISM, CISA, MCSE, CEH) is a cofounder and executive director of Gotham Digital Science, based in the United Kingdom. He has over ten years of experience in testing the security of networks, web applications, and wireless networks for large financial, retail, and technology clients in the United States, the United Kingdom and New Zealand.
Read SQL Injection Attacks and Defense on ScienceDirect