I am looking to prevent one of my client site from SQL injection.
The site is infected by Java script.
We create a stored procedure to clean all database but we can't lunch the site because it will infected again.
The site is creatd by a company which closed and no source code to change or add scurity.
We need to create and sniffer for packets that come to this site or middle software by vb.net that can filter this script before go to the SQL server database and stop it process.
The code should watch this site and find the attack and prevented for such port number we are cosider to fix the domain name and IP of it.
I hope also not to slow down the server.
I found lot fo examples talking about sniffer in C# but not clear that can find this bad script and stoped to be saved in SQL database.
Would help us in very simple short way?