Well after the Newcastle back to the office to do late-night web security testing. Kind of reminded me of the good old days at university really. Then you realise you're too old for tht kind of thing.
Anyways, there is a nice little SQL injection cheat sheet and one thing I was looking to do is spew back source code files using load_file. Here's another advanced SQL injection item in a nice slide show.
Also it's always useful to do your research on any framework used and sometimes they may not show on your security guide of choice (CVE|Security Focus) as seen highlights in the xss issues in qcodo.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment