AW: SQL Vulnerabilty Assesment

From: Dominick Baier (groups@die-lounge.com)
Date: 01/08/03

  • Next message: DABDELMO@bouyguestelecom.fr: "RE: Checkpoint FW-1 on Nokia - potential user enumeration bug?" 
    From: "Dominick Baier" <groups@die-lounge.com>
To: "'John Madden'" <chiwawa999@yahoo.com>
Date: Wed, 8 Jan 2003 23:57:54 +0100

    Hi,

    have a look at

    www.appsecinc.com

    and of course the best general purpose scanner

    www.nessus.org

    greetings
    dominick

    -----Ursprüngliche Nachricht-----
    Von: John Madden [mailto:chiwawa999@yahoo.com]
    Gesendet: Mittwoch, 8. Januar 2003 20:17
    An: pen-test@securityfocus.com
    Betreff: SQL Vulnerabilty Assesment

    Hello all,

    In your experience, what would be the best all around vulnerability
    assesment tool for MSSQL (commercial and
    free) ?

    So far i've got the most popular commercial one's like
    ISS Database Scanner, NGSSquirrel, VigilEnt etc...

    Thanks for the input....

    John

    __________________________________________________
    Do you Yahoo!?
    Yahoo! Mail Plus - Powerful. Affordable. Sign up now.
    http://mailplus.yahoo.com

    ----------------------------------------------------------------------------
    This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
    Service. For more information on SecurityFocus' SIA service which
    automatically alerts you to the latest security vulnerabilities please see:
    https://alerts.securityfocus.com/

    ----------------------------------------------------------------------------
    This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
    Service. For more information on SecurityFocus' SIA service which
    automatically alerts you to the latest security vulnerabilities please see:
    https://alerts.securityfocus.com/

    Relevant Pages

    • Re: XSS vulnerability on Apache Tomcat server
      ... > It seems to be vulnerable for XSS and path disclosure vulnerabilities. ... > This list is provided by the SecurityFocus Security Intelligence Alert ... For more information on SecurityFocus' SIA service which ...
      (Pen-Test)
    • Re: Cross Site Scripting Vulnerabilities - XSS
      ... Cross Site Scripting Vulnerabilities - XSS ... >>> This list is provided by the SecurityFocus Security Intelligence ... For more information on SecurityFocus' SIA service which ...
      (Pen-Test)
    • Re:One Big Review, One Small Script?
      ... >This list is provided by the SecurityFocus Security Intelligence Alert ... For more information on SecurityFocus' SIA service which ... >automatically alerts you to the latest security vulnerabilities please see: ...
      (Pen-Test)
    • Re: MDAC/ IIS / Shell Code Goodies
      ... This list is provided by the SecurityFocus Security Intelligence Alert ... For more information on SecurityFocus' SIA service which ... automatically alerts you to the latest security vulnerabilities please see: ...
      (Pen-Test)
    • Re: faster scans? (nmap)
      ... one host using nmap for syn scans in burst mode with the ... >>>This list is provided by the SecurityFocus Security Intelligence Alert ... For more information on SecurityFocus' SIA service which ...
      (Pen-Test)