/// <summary>
/// Checks if the string contains an SQL injection
/// </summary>
/// <param name="input">The string that will be checked</param>
/// <returns>A value determining if an SQL injection was found</returns>
public static bool IsSQLi(string input, Flags flags = Flags.None)
{
try
{
var sql_state = new libinjection_sqli_state();
libinjection_sqli_init(ref sql_state, Marshal.StringToHGlobalAnsi(input), new IntPtr(input.Length), (int)flags);
return(libinjection_is_sqli(ref sql_state) > 0);
}
catch { }
return(false);
}
private static extern int libinjection_is_sqli(ref libinjection_sqli_state sql_state);
private static extern void libinjection_sqli_init(ref libinjection_sqli_state sql_state, IntPtr s, IntPtr slen, int flags);
