SQL injection is a technique for exploiting web applications that use client-supplied data in SQL queries, but without first stripping potentially harmful characters. Checking for SQL Injection vulnerabilities involves auditing your web applications and the best way to do it is by using automated SQL Injection Scanners. Security-Hacks.com compiled a list of free SQL Injection Scanners. I really enjoy reading the article.
Reference : Pinal Dave (https://blog.sqlauthority.com)
Is your SQL Server running slow and you want to speed it up without sharing server credentials? In my Comprehensive Database Performance Health Check, we can work together remotely and resolve your biggest performance troublemakers in less than 4 hours.
Once you learn my business secrets, you will fix the majority of problems in the future.
Have you ever opened any PowerPoint deck when you face SQL Server Performance Tuning emergencies? SQL Server Performance Tuning Practical Workshop is my MOST popular training with no PowerPoint presentations and 100% practical demonstrations.
Essentially I share my business secrets to optimize SQL Server performance.
4 Comments. Leave new
The link is helpful to get an idea about the SQL Injection Scanners, but sill I am not sure how to do scanning for custom SQL Injection.
Hi Pinal,
Link is not working..
Also one question, can we take the back of data in share hosting. Is there any wuery or statement which can generate the insert statements of the data containing in table.
Thanks and regards,
Rohit
Hello Rohit,
Right Click database > Tasks > Generate Scripts > in wizard on Choose Script Option page set Script Data option to True and complete the wizard.
For SQL 2005 or earlier version, you can also use Databse Publishing Wizard.
Regards,
Pinal Dave
Link is not working