The frequency and scope of SQL injection attacks has exploded in the last year or two. The best tool security staffs have at their disposal in these cases is a forensic analysis of the database. The attacks leave specific fingerprints in the database cache, expert Kevvie Fowler said. Fowler also has written a new tool called Hypnosis, which could be used to detect an attack by the Pangolin SQL injection toolkit. The tool is a command-line tool designed to let users reach into the database server s cache and see whether an attack has occurred.
Source: https://threatpost.com/reality-behind-sql-injection-attacks-100609/72251/