x

SQL Injection

Hi Team, we use asp.net application and MS SQL Server 2008 , how can i test my websites and datbases are safe or not how to test it? after googling i got this url http://www.microsoft.com/download/en/details.aspx?DisplayLang=en&id=16305

but this on is for net application, and my application is ASP.Net
more ▼

asked Jan 09, 2012 at 08:48 PM in Default

ramesh 1 gravatar image

ramesh 1
2.2k 63 67 69

(comments are locked)
10|1200 characters needed characters left

2 answers: sort voted first
more ▼

answered Jan 09, 2012 at 10:32 PM

Amardeep gravatar image

Amardeep
1.3k 86 88 89

(comments are locked)
10|1200 characters needed characters left

On top of traditional firewalls there are now Web Application firewalls (WAF) available. Quite a few organizations are implementing these to secure their environment. As far as for the basic testing and good reads you can visit

http://msdn.microsoft.com/en-us/magazine/cc163917.aspx

http://weblogs.asp.net/scottgu/archive/2006/09/30/Tip_2F00_Trick_3A00_-Guard-Against-SQL-Injection-Attacks.aspx (This one have links to some quite good guidelines)

For some tools

http://www.databasesecurity.com/sqlinjection-tools.htm

http://labs.securitycompass.com/exploit-me/
more ▼

answered Jan 10, 2012 at 03:08 AM

Usman Butt gravatar image

Usman Butt
13.9k 6 8 14

(comments are locked)
10|1200 characters needed characters left
Your answer
toggle preview:

Up to 2 attachments (including images) can be used with a maximum of 524.3 kB each and 1.0 MB total.

New code box

There's a new way to format code on the site - the red speech bubble logo will automatically format T-SQL for you. The original code box is still there for XML, etc. More details here.

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

SQL Server Central

Need long-form SQL discussion? SQLserverCentral.com is the place.

Topics:

x713
x2

asked: Jan 09, 2012 at 08:48 PM

Seen: 553 times

Last Updated: Jan 09, 2012 at 08:48 PM