Assignment
1. Describe the difference between dynamic and static SQL statements. Provide an example to support your discussion.
2. Explain inferential testing.
3. Explain the difference between the HTTP actions GET and POST. Which is more vulnerable to SQL injections? Provide an example to support your statement.
4. Identify and explain at least one way that HTTP data can be intercepted and changed.
5. Explain how studying error messages can help identify SQL injection vulnerability.
6. Explain why active testing is just as important as inferential testing when searching for SQL injection vulnerability.
7. Identify at least one method that source code analysis tools use to locate dangerous source code.
8. Identify how the common injection ' or ' 1 ' = ' 1 can be used to test for SQL vulnerability.