Penetration Testing mailing list archives
RE: Scanning for SQL Injection
From: "Yigit Aktan" <yigit () turkmcse com>
Date: Fri, 29 Jun 2007 00:30:17 +0300
Hi, Yeah you right. On the next version of PRIAMOS, I'll be code; i) Load Session: When you wanna abort a session, you can Save Session for loading it to next running. ii) Import URL File: You can add your URL's to Text File one by one per line and load it from PRIAMOS to scanning multiple URL's per a session. These are some of the features of a next generation PRIAMOS. Kind regards, Yigit. -----Original Message----- From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Ron Johnson - Adhost Sent: Thursday, June 28, 2007 11:07 PM To: pen-test () securityfocus com Cc: listbounce () securityfocus com Subject: Scanning for SQL Injection Hi. I need to scan about 350+ sites from three different web servers that all connect to one MS SQL server for SQL injection. Any ideas on how to make this not take a long long time? I like the Priamos tool but you can only scan one site at a time, and you can't load a list of any sort, etc. Any input is appreciated ------------------------------------------------------------------------ This List Sponsored by: Cenzic Swap Out your SPI or Watchfire app sec solution for Cenzic's robust, accurate risk assessment and management solution FREE - limited Time Offer http://www.cenzic.com/wf-spi ------------------------------------------------------------------------ ------------------------------------------------------------------------ This List Sponsored by: Cenzic Swap Out your SPI or Watchfire app sec solution for Cenzic's robust, accurate risk assessment and management solution FREE - limited Time Offer http://www.cenzic.com/wf-spi ------------------------------------------------------------------------
Current thread:
- Scanning for SQL Injection Ron Johnson - Adhost (Jun 28)
- RE: Scanning for SQL Injection Yigit Aktan (Jun 28)
- Re: Scanning for SQL Injection rajat swarup (Jun 28)
- RE: Scanning for SQL Injection Yigit Aktan (Jun 28)