Tuesday, October 27, 2009

belajar nge-hack

http://ferruh.mavituna.com/makale/sql-injection-cheatsheet
http://crywhole.co.uk/priamos-project-sql-injector-and-scanner.jsp
http://ha.ckers.org/sqlinjection/
http://www.geocities.com/iko94/tutorials/tut_004.txt
http://dev.mysql.com/doc/refman/5.0/en/index.html
http://michaeldaw.org/sql-injection-cheat-sheet/

http://www.unixwiz.net/techtips/sql-injection.html -> "SQL Injection Attacks by Example" by Steve Friedl
http://www.securiteam.com/securityreviews/5DP0N1P76E.html -> "SQL Injection Walkthrough" by SK
http://www.spidynamics.com/papers/SQLInjectionWhitePaper.pdf -> "Sql Injection" by Keven Spett
http://www.acunetix.com/websitesecurity/sql-injection.htm -> "SQL Injection Attack" by Acunetix
http://en.wikipedia.org/wiki/SQL_injection -> "SQL injection" by Wikipedia
http://www.cgisecurity.com/lib/advanced_sql_injection.pdf -> "Advanced SQL injection" by Chris Anley
http://www.cgisecurity.com/lib/more_advanced_sql_injection.pdf -> "More Advanced SQL injection" by Chris Anley
http://www.sitepoint.com/article/sql-injection-attacks-safe -> "SQL Injection Attacks - Are You Safe?" by By Mitchell Harper
http://milw0rm.com/papers/16 -> "Sql Injection Paper" by zeroday
http://www.securityfocus.com/infocus/1709 -> "Penetration Testing for Web Applications (Part Two)" by Jody Melbourne and David Jorm
http://www.governmentsecurity.org/articles/SQLinjectionBasicTutorial.php -> "SQL injection Basic Tutorial" by ComSec
http://www.securitydocs.com/library/3587 -> "SQL Injection Attack and Defense" by Sagar Joshi
http://www.spidynamics.com/whitepapers/Blind_SQLInjection.pdf -> "Blind SQL Injection" by Keven Spett
http://www.imperva.com/download.asp?id=4 -> "Blind SQL Injection" by Ofer Maor and Amichai Shulman
http://www.imperva.com/download.asp?id=2 -> "SQL Injection Signatures Evasion" by Ofer Maor and Amichai Shulman
http://www.cgisecurity.com/lib/sql-insertion.txt -> "SQL Injection/Insertion Attacks" by Roelof Temmingh / Haroon Meer
http://www.securityfocus.com/infocus/1644 -> "SQL Injection and Oracle, Part One" by Pete Finnigan
http://www.securityfocus.com/infocus/1646 -> "SQL Injection and Oracle, Part Two" by Pete Finnigan
http://www.securityfocus.com/infocus/1714 -> "Detecting SQL Injection in Oracle" by Pete Finnigan
http://www.cgisecurity.com/lib/Manipulating_SQL_Server_Using_SQL_Injection.pdf -> "Manipulating Microsoft SQL Server using SQL injection" by Cesar Cerrudo
http://neworder.box.sk/newsread.php?newsid=7703 -> "Hacking Database Servers !" by Chintan Trivedi
http://injection.rulezz.ru/MSSQL-Injection.html -> "MS SQL Injection"
http://injection.rulezz.ru/MySQL-SQL-Injection.html -> "SQL ???????? ? ??????? MySQL"
http://injection.rulezz.ru/Oracle-SQL-Injection.html -> "SQL Injection ? Oracle"
http://injection.rulezz.ru/sql-injection-by-example.html -> "SQL Injection Attacks by Example"
http://www.ngssoftware.com/papers/sqlinference.pdf -> "Data-mining with SQL Injection and Inference" by David Litchfield
http://www.summercon.org/2004/SQLInjectionSlides.pdf -> "Interesting SQL Injection Techniques and Countermeasures" by Paul Scragg
http://www.governmentsecurity.org/articles/SQLInjectionModesofAttackDefenceandWhyItMatters.ph p -> "SQL Injection: Modes of Attack, Defence, and Why It Matters" by Stuart McDonald
http://www.hackthissite.org/articles/read/435 -> "Real4 / intro to sql" by killerguppy101
http://www.wisec.it/en/Docs/and_more_sql_injection.pdf "And More Advanced Sql Injection SiXSS, SiHRS and the Client Side SQL Injection" by Stefano Di Paola
http://rst.void.ru/papers/sql-inj.txt -> "????? sql-injection (mysql)" by 1dt.w0lf
http://www.owasp.org/index.php/PHP_Top_5 -> "PHP Top 5" by Owasp

No comments: