injection

0001-01-01

Injection is a software development technique where external data is introduced into a program or system with the intent of modifying its behavior.

This can be used in defensive and offensive cybersecurity contexts.

Offensive examples include SQL injection, command injection, DLL injection, …

Defensive examples include debugging and reverse engineering techniques, and DLL injection of security software to introduce enhanced security or visibility functionality into existing software.


Links to this note