|
|
Focus on Microsoft
Vulnerability scanner for SQL injection, HTML injection- free or commercial ? Sep 19 2003 05:31AM Milind Nanal (milindyn rolta com) (2 replies) RE: Vulnerability scanner for SQL injection, HTML injection- free or commercial ? Sep 25 2003 07:43PM Laura A. Robinson (larobins bellatlantic net) Re: Vulnerability scanner for SQL injection, HTML injection- free or commercial ? Sep 22 2003 08:03PM Piotr Kupisiewicz (deli rzepaknet us) (1 replies) |
|
Privacy Statement |
www.atstake.com
www.kavado.com
www.spidynamics.com
For SQL try products from:
www.iss.net
www.appsecinc.com
www.nextgenss.com
Regards
Faisal Masood (FM)
Lahore, Pakistan
-----Original Message-----
From: Piotr Kupisiewicz [mailto:deli (at) rzepaknet (dot) us [email concealed]]
Sent: Tuesday, September 23, 2003 1:03 AM
To: focus-ms (at) securityfocus (dot) com [email concealed]
Subject: Re: Vulnerability scanner for SQL injection, HTML injection-
free or commercial ?
> Can anyone please tell me information about any vulnerability scanner
(free
> or trial version of commercial scanner) which can scan SQL injection ,
HTML
> injection of IIS web server running with MS sql 2000 as a backend
database.
>
> I get many document on the internet which tell me few default
techniques of
> SQL injection & trying out those to carry out SQL injection test. I am
> looking out for ready made scanner which has a set of inbuilt commands
to
> carry out SQL , HTML injection attack & give a report ,
recommendations to
> solve the problem.
You can try CGIAudit - http://www.innu.org/~super/.
--
[ Piotr 'Deletek' Kupisiewicz ]
[ GG: 816686 IRC: #rzepaknet Tel: 693361007 ]
------------------------------------------------------------------------
---
------------------------------------------------------------------------
---
------------------------------------------------------------------------
---
------------------------------------------------------------------------
---
[ reply ]