Security Innovation takes a unique approach to Education and offers foundational training to build core skills, and reinforcement assets to provide knowledge at the time of need.
SQL Injection is considered by security experts to be the number one attack today and has been on every popular “top ten” list for the past decade. It is the root cause of many high-profile data breaches against data breaches for Global Payments, JetBlue, NASDAQ, Dow Jones, 7-Eleven and others. Although it’s the most prevalent and damaging, it’s also very preventable.
Security Innovation and Ironbox co-created an Anti-SQL Injection Library (AntiSQLi) that developers can easily implement to prevent SQL Injection vulnerabilities. We also created a 10 minute course that provides an overview of SQL Injection and how to implement AntiSQL.
Developers: Joe Basirico, Security Innovation & Kevin Lam, IronBox
AntiSQLi allows developers to write parameterized queries in a single line using the String.format paradigm common form in programming. It is easy to implement, highly extensible and includes pre-written .NET classes for Microsoft SQL Server. It can be easily extended to support other database platforms.
Download | Dark Reading Article
Below are some additional resources to help protect your applications and business against SQL injection attacks.