Security

General

Huntress post re BillQuick SQL injection vulnerability.

Excellent read. It includes some short videos showing you the hacking steps to find and exploit the SQL injection vulnerability. Let’s hope you can’t reproduce them in your own environment…

Haroon Meer and Adrian Sanabria from Thinkst discuss the security tools market in 2019.

An eye-opening session on the reasons why there are tons of cybersecurity tools, yet many of them are terrible.

Database security

OWASP Database Security Cheat-Sheet

Database audit checklist from process.st

SQL injection for defenders

My video showing SQL injection vulnerability within a stored procedure

Snyk.io cheat sheet

OWASP SQL injection cheat sheet

Microsoft ‘Dynamic SQL and SQL Injection’

SQL injection for hackers

Portswigger hackers’ SQL injection cheat sheet