22-25 April 2026
Book Now

SQL Injection: How it Works, How to Stop It

2021

TL; DR

Learn what SQL Injection is and all the mechanisms you should employ to help stop it.

Session Details

This session will explain and demonstrate exactly how a SQL Injection attack occurs. While the core vulnerability is easy to understand, exactly how hackers exploit that vulnerability is not. I'll show you how a hacker explores your database through SQL Injection to find vulnerabilities and sensitive data. Better still, I'll show you the errors that this exploration generates as a mechanism for monitoring your systems to find SQL Injection attacks. Finally, I'll show you the steps you should be taking to properly secure your systems in order to completely avoid SQL Injection attacks.

3 things you'll get out of this session

Speaker

Grant Fritchey

scarydba.com

Grant Fritchey's previous sessions

Intelligent Query Processing: From Insight to Impact - 2026
dbRosetta, An AI Generated Application and Database - 2026
PostgreSQL For Those Who Know SQL Server - 2026
Query Performance Enhancements in SQL Server 2025 - 2026
Learning PostgreSQL as a SQL Server User - 2025
Maximize your Productivity: 10 Ways Redgate Makes Database Management Easier - 2025
The (Data) Future's So Bright, I Gotta Wear Shades - 2025
Understanding Extended Events - 2024
Managing the Challenge of Monitoring Growing, Multi-platform Database Estates - 2024
The New Database Landscape - Revealing Shifts and Charting the Next Horizon - 2024
Fundamentals of Git - 2023
Efficiency up, failed releases down; compliant production data for your test and dev environments - 2023
Automating Database Deployments Using Github Actions - 2022
Benefits of Using Version Control In Database Development - 2022
SQL Server Query Performance: Common Problems, Possible Solutions - 2022
Flyway: An Evolution in Database Deployments - 2022
What I’m telling your developers about DevOps - 2022
SQL Injection: How it Works, How to Stop It - 2021
Yes, You Should Monitor Azure SQL Database - 2020
SQL Injection: How it Works, How to Stop It - 2020
Learn to Read Execution Plans - 2019
Environment Provisioning: The Third Age - 2019
DevOps and Data - 2018
Exploring Execution Plans - 2018
Data protection & privacy in the world of database DevOps - 2018
Statistics, Row Counts, Execution Plans, and Query Tuning - 2017
Introducing the Query Store - 2017
Faster Provisioning with SQL Clone - 2017
The Query Store and Query Tuning in SQL Server vNext - 2016
Execution Plans: What Can You Do With Them? - 2015
Top Tips for Better T-SQL - 2015
Automating Your Database Deployments - 2015
Getting Started Reading Execution Plans - 2014
Monitoring Windows Azure SQL Server VMs and SQL Databases - 2014
Query Tuning in the Clouds - 2013