Security Basics mailing list archives

Re: Test for SQL Injection

From: "Taras P. Ivashchenko" <naplanetu () gmail com>
Date: Thu, 06 Nov 2008 00:43:27 +0300

Michael, I will recommend w3af (http://w3af.sourceforge.net/) to test
your web app for vulnerabilities such as SQL injection.

What are some open source utilities I can use to test a web page for SQL 
Injection vulnerability (MySQL), and what coding practices can be 
implemented to prevent the exploit?

-- 
Тарас Иващенко (Taras Ivashchenko), OSCP
----
"Software is like sex: it's better when it's free." - Linus Torvalds

Attachment: signature.asc
Description: This is a digitally signed message part

Current thread:

Re: Test for SQL Injection Michael Condon (Nov 05)
- <Possible follow-ups>
- Re: Test for SQL Injection Taras P. Ivashchenko (Nov 05)
- Re: Test for SQL Injection Michael Condon (Nov 06)
  - RE: Test for SQL Injection David Crandell (Nov 06)
  - RE: Test for SQL Injection Rui Pereira (WCG) (Nov 06)
    - RE: Test for SQL Injection Robertson, Seth (JSC-IM) (Nov 06)