Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

Re: SQLi Vulnerability Scanners

From: Andres Riancho <andres.riancho () gmail com>
Date: Fri, 17 Jul 2009 12:41:14 -0300
pma111,

On Wed, Jul 15, 2009 at 10:39 AM, pma111<pmaneedham () hotmail com> wrote:


Can anyone recommend any decent SQL Injection vulnerability scanners (free
ideally, and if they have a GUI even better) that will identify if any of
our pages/forms are suceptible to SQL injection, rather than perform the
actual injection? Pages have been developed in Asp.net / C# (as I know some
tools are specific to what the page was developed in), backend DB of SQL
Server 2000.


http://w3af.sf.net/


Thanks,
--
View this message in context: http://www.nabble.com/SQLi-Vulnerability-Scanners-tp24498086p24498086.html
Sent from the Penetration Testing mailing list archive at Nabble.com.


------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT 
and CEPT certs require a full practical examination in order to become certified.

http://www.iacertification.org
------------------------------------------------------------------------






-- 
Andrés Riancho
Founder, Bonsai - Information Security
http://www.bonsai-sec.com/
http://w3af.sf.net/

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT 
and CEPT certs require a full practical examination in order to become certified.

http://www.iacertification.org
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: