Welcome to TechNet Blogs
Sign in
|
Join
|
Help
Neil Carpenter's Blog
Forefront products, WSUS, Security Incident Response, and whatever else comes up.
This Blog
Email
Syndication
RSS 2.0
Atom 1.0
Search
Tags
Antigen
AntiVirus
Anti-Virus
ASP
asp.net
AV
Forefront
FSSMC
General
humor
Incident Response
iphone
Mobile
Networking
Security
SQL
Tool
Archives
November 2009 (1)
October 2008 (2)
August 2008 (2)
July 2008 (3)
June 2008 (1)
May 2008 (4)
April 2008 (2)
March 2008 (3)
August 2007 (2)
July 2007 (2)
June 2007 (2)
October 2004 (3)
June 2004 (4)
About Me
Bio
Disclaimer
Browse by Tags
All Tags
»
SQL
»
Tool
(RSS)
ASP
Incident Response
Security
Friday, October 31, 2008 4:07 PM
SQL Injection Hijinks
or Why I Keep Harping On Blacklisting Summary: An incident reveals attempts to get around blacklisting by manipulating behavior in ASP, illustrating the weakness of blacklist approaches. A new version of UrlScan is shipping today with a change specifically
Posted by
neilcar
|
1 Comments
Filed under:
Security
,
Incident Response
,
SQL
,
ASP
,
Tool
Tuesday, May 27, 2008 1:51 PM
SQLInjectionFinder
My colleague Greg , who has forgotten more about command line scripting than I will ever know, put together a sample on CodePlex that automates finding SQL injection attacks from the ongoing mass SQL injection attack ("SQL Storm", as I saw it
Posted by
neilcar
|
0 Comments
Filed under:
Security
,
Incident Response
,
SQL
,
Tool
