Portcullis Labs » White Papers

RSS Feed - White Papers

Content

• Deep Blind SQL InjectionDeep Blind SQL Injection is a new way to exploit Blind SQL Injections with a 66% reduction in the number of requests.
• DoS Attacks Using SQL WildcardsThis paper discusses abusing Microsoft SQL Query wildcards to consume CPU in database servers. This can be achieved using only the search field present in most common web applications.

Document

• Having Fun With PostgreSQL
• Next generation malware: Windows Vista's gadget API
• XSS Tunnelling