Home > Software Quality Featured Topic
EMAIL THIS
 Featured Topic:  Stifle SQL injection
Last Updated: Apr 10, 2007 
SQL injection attacks have been known to take down many Web sites and applications. Are your applications vulnerable? What can you do to protect against these attacks? Learn more in these articles and tips. >> SQL injection: A definition
>> Book Excerpt: Hacking Exposed Web Applications -- Input Validation Attacks
NEWS:
>> New SQL truncation attacks and how to avoid them (MSDN Magazine) 19 Oct 2006
>> Database threat intensifies (Dark Reading) 20 Oct 2006
>> Data validation -- Chapter 12, OWASP Guide to Building Secure Web Applications and Web Services (OWASP) 27 Jul 2005
ADVICE:
>> SQL injection defense tactics
TIP :SQL injection exploits are dangerous, but not difficult to prevent. James C Foster explains how proper input validation and ...
>> Preventing SQL Injection attacks
TIP :Learn what a SQL injection exploit is, and how to defend yourself. Mike Chapple offers five methods to reduce the possibility ...
>> Blind SQL injection attacks explained
TIP :This tip reviews the difference between SQL injection attacks and blind SQL injection attacks, how they occur and what you ...
>> SQL injection: Developers fight back
TIP :SQL injection attacks are a popular threat against application security. Anurag Agarwal provides 10 steps developers can use ...
>> SQL injection: Secure your Web applications
TIP :SQL injection exploits wreak havoc on vulnerable Web sites. Expert Caleb Sima teaches you how to protect your applications ...
>> Ways to automate SQL injection testing
TIP :Manual testing for SQL injection requires much effort with little guarantee that you'll find every vulnerability. Run ...
>> The importance of input validation
TIP :Web applications are vulnerable if you don't practice input validation. Learn how to prevent application attacks such as ...
>> Can you prevent SQL injection attacks with stored procedures?
ASK THE EXPERTS :If I use stored procedures, does that guarantee my application will be safe from SQL injection?
LEARNING TOOLS:
>> White Papers: How to protect against SQL injection and other application attacks

Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


RELATED CONTENT
Building security into the SDLC (Software development life cycle)
The role of quality assurance (QA) pros in software security
Common software security risks and oversights
Why the quality assurance department should be involved in testing
How to develop secure applications
Secure software development practices 'not rocket science'
How to prevent HTTP response splitting
Browser security a concern for website development
Web application security and the PCI DSS
PCI DSS compliance: Web application firewalls (WAFs)
PCI DSS compliance: The basics

Threat modeling
Web application security and the PCI DSS
The essentials of Web application threat modeling
How to implement security in Java EE and Java ME
Application security shouldn't involve duct tape, Band-Aids or bubble gum
How to counter XSS attacks
Breaking the same origin barrier of JavaScript
Protection against "zero-minute" exploits
Denial of service and Ajax
CSRF attack vector with Ajax serialization
Application security in 2007: What you need to know

Software security testing and techniques
Fixing four Web 2.0 input validation security mistakes
Commonly-overlooked security flaws in rich Internet applications
Web security problems: Five ways to stop login weaknesses
10 steps to acing Web app security assessments
Hack maliciously to boost your software's security
Software Testing: How to know you're ready to start testing
Software security best practices: Roles developers must play
The role of quality assurance (QA) pros in software security
What is fuzz testing? What are some ways to use fuzz testing?
Software security: Removing insecurity from outsourced development

RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary

> Web application testing techniques
> Automated software testing pros and cons
> The importance of integrating security into the SDLC
> How to counter XSS attacks
> Uncover application security flaws using tools
View full list of Featured Topics

About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
SEARCH 
TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2006 - 2009, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts