Home page logo
/

webappsec logo WebApp Sec mailing list archives

Re: good database testing tools to guard against SQL injection for Microsoft, Oracle?
From: Mike <secfocus () mikesbytes com>
Date: Mon, 10 May 2004 15:34:24 -0700

At 5/10/2004 09:54 AM, Earl.Perkins () metagroup com wrote:

does anyone have recommendations for good database testing tools
to spot and correct potential exploitation opportunities for SQL
injection attacks in Microsoft and Oracle database environments?
thanks.

Nessus (http://www.nessus.org) has worked well for me and it's free.

Basically, it scans the web server for scripts that accept input and tests them for SQL injection problems. The output in the report looks like this:

    The following URLs seem to be vulnerable to various SQL injection
    techniques :

    /new/script.asp?ITEM='UNION'&    =
    /new/script.asp?ITEM='UNION'&    =
    /new/script.asp?ITEM='&    =
    /new/script.asp?ITEM='%22&    =
    /new/script.asp?ITEM=9%2c+9%2c+9&    =
    /new/script.asp?ITEM='bad_bad_value&    =
    /new/script.asp?ITEM=bad_bad_value'&    =
    /new/script.asp?ITEM='+OR+'&    =
    /new/script.asp?ITEM='+OR+'&    =
    /new/script.asp?ITEM='WHERE&    =
    /new/script.asp?ITEM=%3B&    =
    /new/script.asp?ITEM='OR&    =

Of course, there are plenty of commercial tools like AppScan (http://www.sanctuminc.com/), WebInspect (http://www.spidynamics.com), ScanDo (http://www.kavado.com/ProductsScando.htm) and numerous others that claim to check for SQL injection vulnerabilities as well but I don't have enough experience with them to recommend them.



  By Date           By Thread  

Current thread:
  • Re: good database testing tools to guard against SQL injection for Microsoft, Oracle? Mike (May 11)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault