Re: RE: Oracle SQL Injection vulnerability

From: eladexposed@gmail.com
Date: Sun Nov 25 2007 - 01:08:30 EST

• Next message: harshad.mengle@wipro.com: "VOIP Pen TEST"
• Previous message: Gleb Paharenko: "Re: Pen Test Success Factors"
• Maybe in reply to: David Cullen: "RE: Oracle SQL Injection vulnerability"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

There're lots(!) of good resources for SQL injection (and other kinds of injections).

For example:

http://www.spidynamics.com/assets/documents/WhitepaperSQLInjection.pdf

http://www.securiteam.com/securityreviews/5DP0N1P76E.html

http://www.sqlsecurity.com/FAQs/SQLInjectionFAQ/tabid/56/Default.aspx

http://www.webappsec.org/projects/threat/classes/sql_injection.shtml

and MANY MANY more... some of them are really informative.

Kind Regards,

Elad Shapira ("Zest" )

"Security, however, is an art, not a science." - RFC 3631

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------

• Next message: harshad.mengle@wipro.com: "VOIP Pen TEST"
• Previous message: Gleb Paharenko: "Re: Pen Test Success Factors"
• Maybe in reply to: David Cullen: "RE: Oracle SQL Injection vulnerability"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:58:13 EDT