Published on May 5th, 2014 📆 | 1883 Views ⚑
0Sql Injection testing for QA (testers)
iSpeech
This video is for anyone that likes to know how to test an application for Sql Injection. The content and presentation was focussed on Quality Assurance personnel who are not penetration testers.
Agenda:
Context setting
Quick introduction -
GET/POST/PUT/DELETE
XML/SOAP/JSON
Browser addons for easy proxy switching
Intercepting proxies - Fiddler, OWASP ZAP, BurpSuite, ..?
Fuzzing and identifying vulnerable parameters
Code review pointers for Buddy testing
Demonstration Fiddler, ZAP, sqlmap, Sql Inject Me
Firsthand experience with Sqli tools (Vijay/Shashank)
Feedback
Related Videos:
Devouring Security - Sql Injection Part 2
Devouring Security - Sql Injection Part 1
Likes: 2
Viewed:
source
Gloss