[From Jumpstart TV
In this presentation at the Jacksonville SQL Server Users Group, Bayer White plays the part of a developer protecting his application and Brian Knight attempts to hack his application using SQL Injection and cross-site scripting. Then, Bayer will show you how to protect yourself from the hacker and then Brian tries again. Back and forth the chess match goes until someone wins!
The article continues at