Mention here that we will test all the possible attacks and focus on paramtized queries and stored procedure
The testing phase will include creating a simple page of login as password with simple code and show that the sql injections occurs (show codes and snapshots where necessary)
Then we use parametized query techniques and modify the code and show that the sql INJECTION is prevented . similarly we will do with the stored procedure technique.
Code and snapshot is required.
Dicussions and Results
Explain here the overall outcome from these experiment and using this techniques the developer can stop and prevent from sql injection from the very beginning phase i.e the development phase.. and so on and so forth.