what is an SQL Injection?

Показать описание

#sqlserver #SQLinjection #database

Рекомендации по теме

Комментарии

I work for altoro, I can't believe you did us dirty

gio

every time I see the term SQL injection I think of PHP, because I'm a GenX dev and I was there when PHP became popular and dethroned PERL as the preferred web scripting language. The irony is that PHP became famous because it is extremely insecure as a programming language and almost everyday of the late 1990s and early 2000 security news were about some PHP site being hacked by SQL injections.

PERL otoh came with a security feature that forced you to use any method to parse and check the data of anything that came outside of the computer, anything from sockets including a request had to be parsed in some way, usually a regex, and if the perl dev read the manual properly would avoid injections which it happen. PERL throws an error of "tainted variable" if you want to use it without parsing it. PERL5 at least I don't know if PERL6 does it.

laughingvampire

Literally just did a module on this today, cool stuff!

vexperian

this is soooo relevant! if you live in 2002

hackdonalds

can you make a video about AI training on the cloud or fine tuning one ?

theluckydragon

and thats why you use prepared statements

HentA.I

My preferred method of preventing injection when building a web app is parameterised statements.
Send the query with placeholders, and send the strings to replace the placeholders.

Alec

my favorite injection is "'or ''=' lol

scriptles

What if the child’s first name is really Drop and the last name is Table?

catharsis

My favorite injection is ' OR '5'='5' /* lol

tykbyvj

This is good but old cuz so many website have protection to this so probably this works only for old websites or maybe some of the http websites. After all thank to chunk he teach us this attacks free

abdurrahimaykut

ANY website that still allows that to happen these, the company that owns it should never be allowed to hold data ever again - there really is no excuse

phoenixmotorsport

Cant wait to see the faces of the SoC Team that needs to work Saturday and Sunday for Altoro

Qyfashae

Why do people still pronounce like that, it's S Q L not Sequel

gavril

It would be useful.. like 20 years ago 😅

nowieszco

Omg. I wish someone had moved it and progressed to check for this. Lol. If you know. You know.

stevenwilliamsknights

where is the rest of the explaination?

borregoayudando

Pretty wild, but pycharm used to actually warn you, if you wrote code, which would make sql injections possible

seasong

exploiting old sites that uses php and MySQL is easy but finding them is hard

healingwithlove

lol are the days of SQL injection my friend

TheBigOTech

what is an SQL Injection?

What Is SQL Injection?

SQL Injections are scary!! (hacking tutorial for beginners)

SQL Injection Explained | SQL Injection Attack in Cyber Security | Cybersecurity | Simplilearn

what is an SQL Injection?

What is SQL Injection?

What are SQL Injections? // Explained in 180 seconds

Running an SQL Injection Attack - Computerphile

SQL Injection - CompTIA Security+ SY0-701 - 2.3

SQL Injection Demo

What is SQL injection? - Web Security Academy

Hacking Websites with SQL Injection - Computerphile

SQL Injection 101: Exploiting Vulnerabilities

SQL Injection - Simply Explained

SQL Injection For Beginners

SQL Injection Attacks - Explained in 5 Minutes

SQL Injection Beginner Crash Course

What is SQL Injection? | SQL Injection Tutorial | Cybersecurity Training | Edureka

Database Breached: The Power of SQL Injection

SQL Injection - CompTIA A+ 220-1102 - 2.4

What is SQL Injection ? || SQL Injection Explained in Telugu || Shiva Ram Tech ||

What is SQL Injection Attack

you need to learn SQL RIGHT NOW!! (SQL Tutorial for Beginners)

What is SQL Injection ? How to prevent SQL Injection Attack in php/mysql ?

What is SQL INJECTION ? | How It Works, Examples and Prevention (Full Tutorial)