Join Kevin Skoglund for an in-depth discussion in this video SQL injection, part of Foundations of Programming: Web Security.
…In this movie we will learn about, and learn how to prevent, SQL Injection.…SQL Injection, cross-site scripting, and cross-site request forgery are…often refereed to as the big three in web security.…They are the most common, the easiest for hackers…to attempt and they can all do significant damage.…If you have to make a choice spend…your time on these three more than anything else.…So what is SQL Injection?…It's when a hacker is…able to execute arbitrary SQL requests. That is, to an SQL database.…
And they can use it for a number of things.…Part of the power of this hack is the fact…that we rely on databases so heavily in web applications now.…And we limit our access to those databases and limit…users' access to them so that we can trust them.…But SQL Injection makes them untrustworthy.…A hacker can use them for a number of different things.…They can be…used to prove a database schema, using trial…and error in order to look for valid SQL's.…To find out what our database looks like.…It can be used to steal database data.…
This course is great for developers who want to secure their client's websites, and for anyone else who wants to learn more about web security.
- Why security matters
- What is a hacker?
- How to write a security policy
- Cross-site scripting (XSS)
- Cross-site request forgery (CSRF)
- SQL injection
- Session hijacking and fixation
- Passwords and encryption
- Secure credit card payments
Skill Level Beginner
1. Security Overview
2. General Security Principles
3. Filtering Input, Controlling Output
4. The Most Common Attacks
5. Encryption and User Authentication
6. Other Areas of Concern
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.