I have a quick question regarding IBM Guardium. Let's say we have a web application. To login inside the web application, the user needs to input credentials and these credentials are compared with a database server to authenticate. Let's say that the application is not securely deployed and someone is able to find a weak point in the application. He performs a SQL injection (for example, select * from users where ....) in the login details which should point directly to the database. Will IBM Guardium capture the SQL statement?
I've seen someone perform a SQL injection in the login details of a dummy web application and I was thinking if Guardium can capture that.