Was there a seminal paper on SQLi? (e.g. the SQLi equiv of Aleph One's "Smashing The Stack For Fun And Profit" on overflows)? #crowdsource
@dan_crowley http://is.gd/by09fV in 2002, good reference. that may be it. still digging!
-
-
@attritionorg@dan_crowley huh, that link is magically not working for me -
@maradydd@dan_crowley the SPI paper can be found at http://is.gd/l6qMfZ (no longer available on SPI/HP site it seems)
End of conversation
New conversation -
-
-
@attritionorg@dan_crowley I'd be inclined to say http://www.phrack.org/issues.html?id=8&issue=54 … for first paper or http://www.nccgroup.com/media/18418/advanced_sql_injection_in_sql_server_applications.pdf … from 2002 -
@raesene@attritionorg I think the question wasn't of which paper was first, but rather the most seminal paper. RFP is awesome tho. -
@dan_crowley@attritionorg true, I think of the NGS one as seminal as it was the 1st I saw to really break down SQLi in detail. -
@raesene@dan_crowley I think it will be ~ 50/50 between NGS and SPI, simply based on which was read first
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.