|
|
|
|
|
|
Ataques
 | Stop SQL Injection Attacks Before They Stop You (566 views) Autor: Paul Litwin - Idioma: Inglês - Tipo: HTML Introdução: The basic idea behind a SQL injection attack is this: you create a Web page that allows the user to enter text into a textbox that will be used to execute a query against a database. ..................................... | | | | (more) Advanced SQL Injection (417 views) Autor: Chris Anley - Idioma: Inglês - Tipo: PDF Introdução: This paper addresses the subject of SQL Injection in a Microsoft SQL Server/IIS/Active Server Pages environment, but most of the techniques discussed have equivalents in other database environments. ..................................... | | | | Advanced SQL Injection In SQL Server Applications (329 views) Autor: Chris Anley - Idioma: Inglês - Tipo: PDF Introdução: This document discusses in detail the common 'SQL injection' technique, as it applies to the popular Microsoft Internet Information Server/Active Server Pages/SQL Server platform. ..................................... | | | | Manipulating SQL Server Using SQL Injection (424 views) Autor: Cesar Cerrudo - Idioma: Inglês - Tipo: PDF Introdução: This paper will focus on advanced techniques that
can be used in an attack on a (web) application utilizing Microsoft SQL Server as a backend. ..................................... | | | | Blind SQL Injection (405 views) Autor: Ofer Maor, Amichai Shulman - Idioma: Inglês - Tipo: HTML Introdução: In the past few years, SQL injection attacks have been on the rise. The increase in the number of database based applications, together with various publications that explain the problem and how it can be exploited... ..................................... | | | | Blind SQL Injection (1790 views) Autor: Kevin Spett - Idioma: Inglês - Tipo: PDF Introdução: Hackers typically test for SQL injection vulnerabilities by sending the application input that would cause the server to generate an invalid SQL query. ..................................... | | | | Detecting SQL Injection in Oracle (413 views) Autor: Pete Finnigan - Idioma: Inglês - Tipo: HTML Introdução: This paper takes the subject further and investigates the possibilities for the Oracle Database Administrator (DBA) to detect SQL injection in the wild against her Oracle database. ..................................... | | | | SQL Injection and Oracle, Part Two (373 views) Autor: Pete Finnigan - Idioma: Inglês - Tipo: HTML Introdução: This is the second part of a two-part article that will examine SQL injection attacks against Oracle databases. ..................................... | | | | SQL Injection and Oracle, Part One (439 views) Autor: Pete Finnigan - Idioma: Inglês - Tipo: HTML Introdução: SQL injection techniques are an increasingly dangerous threat to the security of information stored upon Oracle Databases. These techniques are being discussed with greater regularity on security mailing lists, forums, and at conferences. ..................................... | | | | SQL insertion (443 views) Autor: CGI Security - Idioma: Inglês - Tipo: HTML Introdução: This article takes a broad look at the security issues surrounding MS-SQL and a closer look at the problems of poor input validation... ..................................... | | | | What is Blind SQL Injection? (884 views) Autor: CGI Security - Idioma: Inglês - Tipo: HTML Introdução: When an attacker executes SQL Injection attacks sometimes the server responds with error messages from the database server complaining that the SQL Query's syntax is incorrect. ..................................... | | | | What is SQL Injection? (865 views) Autor: CGI Security - Idioma: Inglês - Tipo: HTML Introdução: An attack technique used to exploit web sites by altering backend SQL statements through manipulating application input. ..................................... | | | | What is XSS? (1605 views) Autor: CGI Security - Idioma: Inglês - Tipo: HTML Introdução: Often people refer to Cross Site Scripting as CSS. There has been a lot of confusion with Cascading Style Sheets (CSS) and cross site scripting... ..................................... | | | | The Cross Site Scripting FAQ (426 views) Autor: CGI Security - Idioma: Inglês - Tipo: HTML Introdução: Dynamic websites suffer from a threat that static websites don't, called "Cross Site Scripting" (or XSS dubbed by other security professionals)... ..................................... | | | | The Evolution of Cross-Site Scripting Attacks (381 views) Autor: David Endler - Idioma: Inglês - Tipo: PDF Introdução: This paper predicts that fully and semi-automated techniques will aggressively begin to emerge
for targeting and hijacking web applications using XSS... ..................................... | | | | Cross-Site Tracing (XST) and XSS (325 views) Autor: Jeremiah Grossman - Idioma: Inglês - Tipo: PDF Introdução: “Trace” is used simply as an input data echo mechanism for the http protocol. ?is request method is commonly used for debug and other connection analysis activities. ..................................... | | | | Cross Site Scripting Vulnerabilities (310 views) Autor: Jason Refail - Idioma: Inglês - Tipo: PDF Introdução: Have you ever mistyped the address of a web site and received a message like “Error - page name could not be found” or “The page you requested: page name does not exist”? ..................................... | | | | SQL Injection/Insertion Attacks (1377 views) Autor: MH - Idioma: Inglês - Tipo: TXT Introdução: This article takes a broad look at the security issues surrounding MS-SQL
and a closer look at the problems of poor input validation. ..................................... | | | | SQL Injection Signatures Evasion (545 views) Autor: Ofer Maor, Amichai Shulman - Idioma: Inglês - Tipo: HTML Introdução: One of the most dangerous and most common attack techniques is SQL Injection. ..................................... | |
| | |
