there may be many sources. I got lot of understanding of SQL/XSS/LFI
and RFI attacks by going through signatures provided by
emergingthreats and IntruPro-IPS signatures. These signature look for
SQL/scripts using patterns. Also SQL injection cheat sheet is one
useful resource.
and RFI attacks by going through signatures provided by
emergingthreats and IntruPro-IPS signatures. These signature look for
SQL/scripts using patterns. Also SQL injection cheat sheet is one
useful resource.
http://www.emergingt...
[ more ]