Security Basics mailing list archives
Re: Test for SQL Injection
From: "Taras P. Ivashchenko" <naplanetu () gmail com>
Date: Thu, 06 Nov 2008 00:43:27 +0300
Michael, I will recommend w3af (http://w3af.sourceforge.net/) to test your web app for vulnerabilities such as SQL injection.
What are some open source utilities I can use to test a web page for SQL Injection vulnerability (MySQL), and what coding practices can be implemented to prevent the exploit?
-- Тарас Иващенко (Taras Ivashchenko), OSCP ---- "Software is like sex: it's better when it's free." - Linus Torvalds
Attachment:
signature.asc
Description: This is a digitally signed message part
Current thread:
- Re: Test for SQL Injection Michael Condon (Nov 05)
- <Possible follow-ups>
- Re: Test for SQL Injection Taras P. Ivashchenko (Nov 05)
- Re: Test for SQL Injection Michael Condon (Nov 06)
- RE: Test for SQL Injection David Crandell (Nov 06)
- RE: Test for SQL Injection Rui Pereira (WCG) (Nov 06)
- RE: Test for SQL Injection Robertson, Seth (JSC-IM) (Nov 06)