RE: Vulnerability scanner for SQL injection, HTML injection- free or commercial ?
From: Faisal Masood (faisyuet_at_wol.net.pk)
Date: 09/24/03
- Previous message: Oscar Kooijman: "RE: Vulnerability scanner for SQL injection, HTML injection- free or commercial ?"
- In reply to: Piotr Kupisiewicz: "Re: Vulnerability scanner for SQL injection, HTML injection- free or commercial ?"
- Next in thread: Harbar, Spencer: "RE: Vulnerability scanner for SQL injection, HTML injection- free or commercial ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: "'Piotr Kupisiewicz'" <deli@rzepaknet.us>, <focus-ms@securityfocus.com> Date: Thu, 25 Sep 2003 00:01:43 +0500
For web server try product of these sites.
www.atstake.com
www.kavado.com
www.spidynamics.com
For SQL try products from:
www.iss.net
www.appsecinc.com
www.nextgenss.com
Regards
Faisal Masood (FM)
Lahore, Pakistan
-----Original Message-----
From: Piotr Kupisiewicz [mailto:deli@rzepaknet.us]
Sent: Tuesday, September 23, 2003 1:03 AM
To: focus-ms@securityfocus.com
Subject: Re: Vulnerability scanner for SQL injection, HTML injection-
free or commercial ?
> Can anyone please tell me information about any vulnerability scanner
(free
> or trial version of commercial scanner) which can scan SQL injection ,
HTML
> injection of IIS web server running with MS sql 2000 as a backend
database.
>
> I get many document on the internet which tell me few default
techniques of
> SQL injection & trying out those to carry out SQL injection test. I am
> looking out for ready made scanner which has a set of inbuilt commands
to
> carry out SQL , HTML injection attack & give a report ,
recommendations to
> solve the problem.
You can try CGIAudit - http://www.innu.org/~super/.
-- [ Piotr 'Deletek' Kupisiewicz ] [ GG: 816686 IRC: #rzepaknet Tel: 693361007 ] ------------------------------------------------------------------------ --- ------------------------------------------------------------------------ --- --------------------------------------------------------------------------- ---------------------------------------------------------------------------
- Previous message: Oscar Kooijman: "RE: Vulnerability scanner for SQL injection, HTML injection- free or commercial ?"
- In reply to: Piotr Kupisiewicz: "Re: Vulnerability scanner for SQL injection, HTML injection- free or commercial ?"
- Next in thread: Harbar, Spencer: "RE: Vulnerability scanner for SQL injection, HTML injection- free or commercial ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
