SECFORCE have co-authored the book "SQL Injection Attacks and Defense"
Published on March 31, 2009 by SECFORCE
SECFORCE has co-authored a book fully dedicated to SQL injection attacks and published by Syngress. This book targets developers, penetration testers and security professionals. It is entirely dedicated to SQL injection attacks and defense, and it is a standalone resource with all the necessary information about the topic.

SQL injection is one of the most devastating vulnerabilities affecting web applications. This book provides penetration testing professionals with all the necessary information to discover and exploit this kind of vulnerabilities.
You may also be interested in...
A deep dive into a stealthier memory allocation variant, analyzing advantages, pitfalls and artifacts
See more
Recently our team ran into an interesting SFTP misconfiguration which allows for a reliable RCE on affected systems. The original discovery by Jann Horn can be found here http://seclists.org/fulldisclosure/2014/Oct/35. Although the affected OpenSSH version is a bit dated, it can still be found...
See more