Have a look at these links - http://owasptop10.googlecode.com/files/OWASP%20Top%2010%20-%202013%20-%20RC1.pdf - http://www.troyhunt.com/2011/12/free-ebook-owasp-top-10-for-net.html - http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/
Essentially you are looking on input validation, parameterized queries etc Regards, Michael Twitter: @_dark_knight_ On Sat, May 18, 2013 at 10:13 AM, Philip Green <[email protected]> wrote: > Hello PaulDotCom mailing list! > > I have a group of programmers working on a site and really, I know more > about breaking into stuff than defending. > > > What do you guys think the most important thing(s) to tell programmers > when they are coding a database to try and prevent SQL injection > attacks occurring? > > > Any website links would really help as well. > > > Thanks in advance. > > > Philip Andrei Green > =) > > _______________________________________________ > Pauldotcom mailing list > [email protected] > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom > Main Web Site: http://pauldotcom.com > -- Michael Allen| Security Consultant CEH, OSCP, GPEN, GWAPT, GCIA
_______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
