For those of you running CSA to protect your IIS web server, which may also be utilizing SQL, you may want to supplement your existing DAC rules.Asprox/Danmec obfuscates the sql injection by hex encoding it inside a CAST statement, like so:The proces...