SCANNING AND RECOVERY TOOL FOR SQL INJECTION FOR ASP.NET WEBSITES
KARTHIK V,  VENKATESH K
Now a days most of the web attacks comes under the structured query language i.e. SQL. This SQL helps acts as the communicator between the user and the server. SQL is just a set of queries which helps the user to get the data from the prescribed server. This SQL just acts as the backend for all the web application project. Here attacker inserts SQL characters or keywords into a SQL statement via unrestricted user input parameters to change the intended query’s logic. By manipulating this data to modify the statements, an attacker can cause the application to issue arbitrary SQL commands and thereby compromise the database. To avoid this type of attacks in asp.net website we need to develop a Risk free website, calls for integrating defensive Coding practices with both vulnerability detection and runtime attack Prevention methods.
Cite this Article
KARTHIK V,  VENKATESH K,   "SCANNING AND RECOVERY TOOL FOR SQL INJECTION FOR ASP.NET WEBSITES"
, International Journal of Engineering Development and Research (IJEDR), ISSN:2321-9939, Volume.2, Issue 2, pp.1533-1538, June 2014, Available at :http://www.ijedr.org/papers/IJEDR1402040.pdf