Search  
Tuesday, November 18, 2008 ..:: Home ::..   Login
 Sponsors Minimize

Idera Free Tools
 Print   
 Special Offers Minimize

Subscribe to MAKE and save!
 Print   
 Welcome Minimize

 Welcome to the SQL Server Innovators Guild (SSIG) site. 

Our group meets the 1st Tuesday of each month at ECPI in Greenville, SC. 

 

 

October 11th, 2008 at ECPI Greenville, SC

Register Now

 
 Print   
 News Minimize

Current Articles | Categories | Search | Syndication

Tuesday, July 15, 2008
August 5th Meeting: Preventing SQL Injection Attacks
By pwaters @ 9:44 AM :: 478 Views :: 0 Comments :: Meetings 		 
"Presenting a new angle on a popular attack vector on databases: SQL Injection."
We will describe types and techniques of SQL Injection attacks on both RDBMS-based web applications and built-in database stored program units, and show how simple SQL Injection can be used to own the database server through the means of privilege escalation.
We will also list ways of preventing SQL Injection attacks - ranging from secure coding practices to various external tools that will alert and prevent SQL Injection attempts, and demonstrate how hacker techniques of evasion can be used to subvert them.
Finally, we will introduce new deep inspection tools for Microsoft SQL Server that can prevent SQL injection, even in zero-day scenarios.
Take away points:
.             How SQL Injection attacks work
.             Secure coding practices
.             Existing tools for SQL Injection prevention and techniques to evade them
.             New resilient technologies used to solve entirely SQL injections, even those exploiting zero-day vulnerabilities
Comments
Currently, there are no comments. Be the first to post one!
Click here to post a comment
Syndicate   Print   
 Affiliate Groups Minimize

Culminis.com

 
 Print   
 Favorite Links Minimize
 Print   
Copyright (c) 2008 SQL Server Innovators Guild   Terms Of Use  Privacy Statement