Microsoft Defender for SQL not protecting azure SQL database

Hichem MABROUKI 1 Reputation point

I have enabled Microsoft Defender for SQL on my azure SQL database.
I have executed some sql request to simulate sql injection attack like
select * from sys.databases where database_id like '' or 1=1;

the request was well executed and the result contain all databases

in security center, there is no alerte.

Did Windows Defender for SQL protect from SQL Injection

Best regards


Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
823 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Givary-MSFT 14,801 Reputation points Microsoft Employee

    @Hichem MABROUKI

    Thank you for reaching out to us. As per my understand you are investigating alerts in Microsoft Defender for SQL - for Azure SQL database.

    Would like to understand when did you onboard Azure SQL DB to Microsoft Defender for Cloud ?

    Do you have this option enabled for SQL DB on Defender for Cloud ?

    Also do you see Azure SQL DB in the inventory list ?

    Let me know if you have any further questions.