Overview
Explore advanced SQL injection techniques and protocol-level query smuggling in this 28-minute conference talk that challenges common assumptions about SQL injection vulnerabilities. Dive into sophisticated attack methodologies that operate at the protocol level, demonstrating how traditional security measures can be bypassed. Learn why SQL injection remains a relevant threat in modern applications and discover practical examples of query smuggling techniques that security professionals need to understand. Examine real-world scenarios and defense strategies while gaining insights into protecting applications against these evolving attack vectors.
Syllabus
SQL Injection Isn't Dead: Smuggling Queries At The Protocol Level - Paul Gerste
Taught by
Cooper