Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

pen-test logo Penetration Testing mailing list archives

Re: SQLi Vulnerability Scanners
From: Anthony Cicalla <anthony.cicalla () gmail com>
Date: Fri, 17 Jul 2009 15:06:42 -0700
Sqlix at OWASP is a nice one and there are a lot more. I also like sqlmap.



On 7/17/09, Benjamin Greenfield <bcg () struxural com> wrote:

sqlmap is an awesome tool:
http://sqlmap.sourceforge.net/

However, it actually tests for injection.  It supports a wide variety
of DB backends and platforms.

On Wed, Jul 15, 2009 at 9:39 AM, pma111<pmaneedham () hotmail com> wrote:


Can anyone recommend any decent SQL Injection vulnerability scanners (free
ideally, and if they have a GUI even better) that will identify if any of
our pages/forms are suceptible to SQL injection, rather than perform the
actual injection? Pages have been developed in Asp.net / C# (as I know
some
tools are specific to what the page was developed in), backend DB of SQL
Server 2000.

Thanks,
--
View this message in context:
http://www.nabble.com/SQLi-Vulnerability-Scanners-tp24498086p24498086.html
Sent from the Penetration Testing mailing list archive at Nabble.com.


------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review
Board

Prove to peers and potential employers without a doubt that you can
actually do a proper penetration test. IACRB CPT and CEPT certs require a
full practical examination in order to become certified.

http://www.iacertification.org
------------------------------------------------------------------------




------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually
do a proper penetration test. IACRB CPT and CEPT certs require a full
practical examination in order to become certified.

http://www.iacertification.org
------------------------------------------------------------------------




-- 
Sent from Gmail for mobile | mobile.google.com

Anthony,

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT 
and CEPT certs require a full practical examination in order to become certified. 

http://www.iacertification.org
------------------------------------------------------------------------

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]