Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
esthera
Master Smack Fu Yak Hacker
1410 Posts |
 Posted - 2012-09-27 : 16:53:19
|
| I recently had an sql injection attackI've looked and all the pages are protecting against sql injection.Is there any tool that I can use to help me find where the sql injection attack is getting in from? |
|
|
prett
Posting Yak Master
212 Posts |
Posted - 2012-09-28 : 04:51:54
|
| With dotDefender web application firewall you can avoid SQL injection attacks because dotDefender inspects your HTTP traffic and determines if your web site suffers from SQL Injection or other attacks stopping identity theft and preventing data leaks from web applications. For more details bout this tool, please follow this link: http://www.applicure.com/solutions/prevent-sql-injection-attacks |
 |
|
|
komkrit
Yak Posting Veteran
60 Posts |
Posted - 2012-10-01 : 11:37:20
|
| Usually SQL injection attack through http web service.You can investigate them by service log.I had ever detect SQL Injection by looking into IIS log.It's shown weird url request such as long hexadecimal string.For example2012-01-01 /index.aspx?login='or 1=1;DECLARE @VAR='XXXXXXXXXXXXXXXX';EXEC @VAR;--- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -Komkrit YensirikulWelcome for all questions. Let us know if our solution solved your problem. |
|
|
|
|
|
|
sql injection errors