Robert Hurlbut Blog

Thoughts on Software Security, Software Architecture, Software Development, and Agility

Detection of SQL Injection and Cross-site Scripting Attacks

Wednesday, April 14, 2004 Comments

 .NET   ArchitecturePatterns   ASP.NET   Security 
Share:   Share on LinkedIn    Share on Twitter    Share on Google+    Share on Facebook   

I found an interesting article titled “Detection of SQL Injection and Cross-site Scripting Attacks“ at SecurityFocus today.  Basically, it focuses on how to set up rules for SNORT (an open-source Intrusion Detection System (IDS) tool) using regular expressions.  What I found most interesting about the article is that some of the same ideas can be applied to input validation as well, in terms of checking for these kind of input attacks to a web site.  Very good read.

Share:   Share on LinkedIn    Share on Twitter    Share on Google+    Share on Facebook