Authored on: Jun 21, 2012
Organizations of all sizes, and even Lady Gaga, are under SQL injection (SQLi) attack. According to Privacyrights.org, SQLi has contributed to 83% of successful hacking-related data breaches since 2005. Can your organization afford this type of attack?
This report analyzes SQLi attack variants that allow the evasion of simple signature-based defense mechanisms, investigates automated SQLi tool kits, such as Sqlmap and Havij, and recommends a three-fold approach to defeat SQLi.