Computers, Programming, Technology, Music, Literature

Sql Injection testing for QA (testers)

leave a comment »



This video is for anyone that likes to know how to test an application for Sql Injection. The content and presentation was focussed on Quality Assurance personnel who are not penetration testers.

Context setting
Quick introduction –
Browser addons for easy proxy switching
Intercepting proxies – Fiddler, OWASP ZAP, BurpSuite, ..?
Fuzzing and identifying vulnerable parameters
Code review pointers for Buddy testing
Demonstration Fiddler, ZAP, sqlmap, Sql Inject Me
Firsthand experience with Sqli tools (Vijay/Shashank)


Related Blogs/Videos/Downloads:

Devouring Security – Sql Injection Part 2  |
Devouring Security – Sql Injection Part 1  |

Foxy Proxy

Chrome extension (open from chrome browser) –

Firefox Extenstion (open from Firefox) –




active python

Mantra browser


Written by gmaran23

May 9, 2014 at 10:39 pm

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: