Sometimes, we don’t know how our SQL query will look like exactly as there are times that the query needs to be created dynamically.
Or, you may just be looking for a solution that will make SQL queries more readable.
Squel.js, a lightweight JavaScript library, helps building SQL query strings very easily through an object oriented API.
It works both on the browser (not advised as the queries will be visible to all) + with nodejs and supports all standard SQL queries (can be customized to support non-standard queries).
Medoo is a lightweight (~8kb) PHP framework for working with SQL databases.
The framework comes as a single file and works with MySQL, MSSQL, PostgreSQL, SQLite (and more).
It has methods for all the common SQL queries and controls for preventing SQL injention.
Medoo is simple-yet-handy and it is very well-documented.
Requirements: PHP 5.1+
SQL injection, the technique of manipulating SQL queries by sending custom SQL statements using forms or other requests (POST, GET..) to attack databases, is probably the nightmare for many dynamic websites.
Bobby Tables, an online guide to prevent SQL injection, tells "how easy it is to create secure queries" by focusing on 2 facts:
- not creating SQL statements that include outside data
- using parameterized SQL calls.
The guide provides information for many popular scripting/programming languages and, for anyone willing to learn more about SQL injection, checking your favorite language is probably a good idea.
P.S. The comics is from xkcd.
It generally becomes a problem for creative agencies to manage the project files (designs, mockups, contracts, etc.) created within years.
Razuna is an open source application for storing, categorizing & sharing digital assets easily.
It can manage files in every format (Word, Excel, PDF, images in all formats, videos, etc.).
The application has an advanced search & categorization system for locating the files quickly.
Razuna has an open API for integrating it with 3rd party softwares (there is a plugin for WordPress integration), using data stored in websites, etc.
It is a multilingual application that also has an Adobe AIR-based desktop tool besides the web interface.
Razuna is totally based on open standards (J2EE/CFML/SQL/XML).
Requirements: Tomcat J2EE Server
SQLServerPedia is a wiki that is concentrated on SQL Server that is edited & administered by SQL Server professionals.
There is a serious amount of content that is well-categorized & easy to reach. Some of the categories are:
- Architecture & configuration
- Monitoring SQL Servers
- Performance tuning & more..
There are also various podcasts which are great for watching & learning the details from professionals.
And, besides the editors, there are bloggers & other contributors who help the content get wider.
For any developer who is into SQL Server, SQLServerPedia is a must-bookmark.
WIPmania provides IP to country database and API which is free to use for both personal & commercial projects.
The database comes in SQL, CIDR & text formats & updated in every 2 months.
If you don’t want to use the database and use the API, a simple query like:
http://api.wipmania.com/123.45.67.89?google.com
returns you a 2 digit country code (google.com is the URL where the query is made from). API usage is free until 10,000 queries/day.
Scrawlr is a free software for scanning SQL injection vulnerabilities on your web applications.
It is developed by HP Web Security Research Group in coordination with Microsoft Security Response Center.
Scrawlr crawls a website while simultaneously analyzing the parameters of each individual web page for SQL Injection vulnerabilities.
After the scanning process, if it can find, it even shows your database table names as a proof of the possible SQL injection vulnerabilities.
Most of the membership forms include a country list.
Urbano Alvarez is presenting ready to use country list data in several languages.
The lists are in the HTML format as:
<select id="countrySelect" >
<option value="AF">Afghanistan</option>
<option value="AL">Albania</option>
<option value="DZ">Algeria</option>
<option value="AS">American Samoa</option>
</select>
For country lists in SQL format, you can also use the files at:
htmlSQL is a PHP class for querying HTML using a SQL-like query.
It saves you from writing complex regular expressions to extract values.
htmlSQL example:
This query returns an array with all links that contain the attribute class="list".
Isn’t it great?
How to use?
You simply insert the PHP files from th download package and that’s all.
