Hands-on SQL Injection

Hands-on SQL Injection is the first article in my Hands-on Web Security series (’series’ of one). It teaches you what SQL Injections are and how to protect against them. But the fun part is that I have 2 live holes open for exploitation hosted at http://victim.duartes.org (which is really just an alias, since I run the site off an old creaky computer which would blow up with VMware).

If you know what SQL Injections are but aren’t exactly sure how they work, here’s your chance to have at it without breaking federal law.

Comments

• Find It

• Recently Written

  • CPU Rings, Privilege, and Protection
  • Memory Translation and Segmentation
  • Certification Demand and Quality
  • Lucky to be a Programmer
  • The Kernel Boot Process
  • How Computers Boot Up
  • Motherboard Chipsets and the Memory Map
  • Of Aviation Crashes and Software Bugs
  • Why Brazil Loves Linux
  • WordPress up and running

• Categories

  • Internals
  • Linux
  • Meta
  • Productivity
  • Programming
  • Security
  • Software Illustrated
  • Sysadmin

• Monthly Archives

  • August 2008
  • July 2008
  • June 2008
  • May 2008
  • April 2008
  • March 2008
  • February 2008

Copyright © 2008 Gustavo Duarte • Using Cangaço, based on Dropshadow theme by Brian Gardner