SQL Server Forums
Profile | Register | Active Topics | Members | Search | Forum FAQ
 
Register Now and get your question answered!
Username:
Password:
Save Password
Forgot your Password?

 All Forums
 General SQL Server Forums
 New to SQL Server Administration
 sql injection errors
 New Topic  Reply to Topic
 Printer Friendly
Author Previous Topic Topic Next Topic  

esthera
Flowing Fount of Yak Knowledge

1393 Posts

Posted - 09/27/2012 :  16:53:19  Show Profile  Reply with Quote
I recently had an sql injection attack

I've looked and all the pages are protecting against sql injection.
Is there any tool that I can use to help me find where the sql injection attack is getting in from?

prett
Posting Yak Master

USA
203 Posts

Posted - 09/28/2012 :  04:51:54  Show Profile  Visit prett's Homepage  Reply with Quote
With dotDefender web application firewall you can avoid SQL injection attacks because dotDefender inspects your HTTP traffic and determines if your web site suffers from SQL Injection or other attacks stopping identity theft and preventing data leaks from web applications. For more details bout this tool, please follow this link: http://www.applicure.com/solutions/prevent-sql-injection-attacks
Go to Top of Page

komkrit
Yak Posting Veteran

Thailand
60 Posts

Posted - 10/01/2012 :  11:37:20  Show Profile  Reply with Quote
Usually SQL injection attack through http web service.
You can investigate them by service log.
I had ever detect SQL Injection by looking into IIS log.
It's shown weird url request such as long hexadecimal string.
For example
2012-01-01 /index.aspx?login='or 1=1;DECLARE @VAR='XXXXXXXXXXXXXXXX';EXEC @VAR;--


- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Komkrit Yensirikul
Welcome for all questions. Let us know if our solution solved your problem.
Go to Top of Page
  Previous Topic Topic Next Topic  
 New Topic  Reply to Topic
 Printer Friendly
Jump To:
SQL Server Forums © 2000-2009 SQLTeam Publishing, LLC Go To Top Of Page
This page was generated in 0.09 seconds. Powered By: Snitz Forums 2000