From: Ulises2k (ulises2kgmail.com)
Date: Fri Jul 17 2009 - 11:17:10 CDT

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Try this:

GUI
http://w3af.sf.net
http://witool.sf.net/
http://code.google.com/p/bsqlhacker/

Console
http://sqlmap.sf.net/

On Wed, Jul 15, 2009 at 10:39, pma111<pmaneedhamhotmail.com> wrote:
>
> Can anyone recommend any decent SQL Injection vulnerability scanners (free
> ideally, and if they have a GUI even better) that will identify if any of
> our pages/forms are suceptible to SQL injection, rather than perform the
> actual injection? Pages have been developed in Asp.net / C# (as I know some
> tools are specific to what the page was developed in), backend DB of SQL
> Server 2000.
>
> Thanks,
> --
> View this message in context: http://www.nabble.com/SQLi-Vulnerability-Scanners-tp24498086p24498086.html
> Sent from the Penetration Testing mailing list archive at Nabble.com.
>
>
> ------------------------------------------------------------------------
> This list is sponsored by: Information Assurance Certification Review Board
>
> Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.
>
> http://www.iacertification.org
> ------------------------------------------------------------------------
>
>

--
--
Ulises U. Cuñé
Web: http://www.ulises2k.com.ar

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.

http://www.iacertification.org
------------------------------------------------------------------------

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]