<html><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; ">Luca<div><br></div><div>As per telephone discussion here are a selection of pages from OWASP &nbsp;(there are links to related articles at the bottom):</div><div><br></div><div><b>Parameter attacks&nbsp;</b></div><div>&nbsp;&nbsp;<a href="https://www.owasp.org/index.php/Web_Parameter_Tampering">https://www.owasp.org/index.php/Web_Parameter_Tampering</a></div><div>&nbsp;&nbsp;<a href="https://www.owasp.org/index.php/Argument_Injection_or_Modification">https://www.owasp.org/index.php/Argument_Injection_or_Modification</a></div><div>&nbsp;&nbsp;<a href="https://www.owasp.org/index.php/Unicode_Encoding">https://www.owasp.org/index.php/Unicode_Encoding</a></div><div><br></div><div><b>Injection attacks</b></div><div>&nbsp;&nbsp;<a href="https://www.owasp.org/index.php/SQL_Injection">https://www.owasp.org/index.php/SQL_Injection</a></div><div>&nbsp;&nbsp;<a href="https://www.owasp.org/index.php/LDAP_injection">https://www.owasp.org/index.php/LDAP_injection</a></div><div><br></div><div>Here is the attack page of the OWASP site -&nbsp;<a href="https://www.owasp.org/index.php/Category:Attack">https://www.owasp.org/index.php/Category:Attack</a></div><div><br></div><div>Mark</div><div><br></div></body></html>