Comments on: Top 15 SQL injection scanner http://maestro-sec.com/blogs/2008/10/top-15-sql-injection-scanner/ ::Hack IT to Master IT:: Tue, 22 Nov 2011 09:18:56 +0000 hourly 1 http://wordpress.org/?v=3.3 By: Jack http://maestro-sec.com/blogs/2008/10/top-15-sql-injection-scanner/comment-page-1/#comment-29590 Jack Fri, 15 Jul 2011 00:37:13 +0000 http://maestro-sec.com/blogs/?p=169#comment-29590 This post pretty much covered up all my questions, thx :) This post pretty much covered up all my questions, thx :)

]]> By: anonymous http://maestro-sec.com/blogs/2008/10/top-15-sql-injection-scanner/comment-page-1/#comment-4775 anonymous Thu, 27 May 2010 09:32:43 +0000 http://maestro-sec.com/blogs/?p=169#comment-4775 WebCruiser - Web Vulnerability Scanner WebCruiser - Web Vulnerability Scanner, a compact but powerful web security scanning tool that will aid you in auditing your site! It has a Vulnerability Scanner and a series of security tools. It can support scanning website as well as POC( Prooving of concept) for web vulnerabilities: SQL Injection, Cross Site Scripting, XPath Injection etc. So, WebCruiser is also an automatic SQL injection tool, a XPath injection tool, and a Cross Site Scripting tool! Function: * Crawler(Site Directories And Files); * Vulnerability Scanner(SQL Injection, Cross Site Scripting, XPath Injection etc.); * POC(Proof of Concept): SQL Injection, Cross Site Scripting, XPath Injection etc.; * GET/Post/Cookie Injection; * SQL Server: PlainText/Union/Blind Injection; * MySQL/DB2/Access: Union/Blind Injection; * Oracle: Union/Blind/CrossSite Injection; * Post Data Resend; * Administration Entrance Search; * Time Delay For Search Injection; * Auto Get Cookie From Web Browser For Authentication; * Report Output. System Requirement: Windows with .Net Framework 2.0 or higher http://sec4app.com/ http://websecurityscanner.blogspot.com/ WebCruiser – Web Vulnerability Scanner

WebCruiser – Web Vulnerability Scanner, a compact but powerful web security scanning tool that will aid you in auditing your site! It has a Vulnerability Scanner and a series of security tools.

It can support scanning website as well as POC( Prooving of concept) for web vulnerabilities: SQL Injection, Cross Site Scripting, XPath Injection etc. So, WebCruiser is also an automatic SQL injection tool, a XPath injection tool, and a Cross Site Scripting tool!

Function:
* Crawler(Site Directories And Files);
* Vulnerability Scanner(SQL Injection, Cross Site Scripting, XPath Injection etc.);
* POC(Proof of Concept): SQL Injection, Cross Site Scripting, XPath Injection etc.;
* GET/Post/Cookie Injection;
* SQL Server: PlainText/Union/Blind Injection;
* MySQL/DB2/Access: Union/Blind Injection;
* Oracle: Union/Blind/CrossSite Injection;
* Post Data Resend;
* Administration Entrance Search;
* Time Delay For Search Injection;
* Auto Get Cookie From Web Browser For Authentication;
* Report Output.

System Requirement: Windows with .Net Framework 2.0 or higher

http://sec4app.com/

http://websecurityscanner.blogspot.com/

]]> By: Skrik http://maestro-sec.com/blogs/2008/10/top-15-sql-injection-scanner/comment-page-1/#comment-1753 Skrik Thu, 11 Jun 2009 21:34:26 +0000 http://maestro-sec.com/blogs/?p=169#comment-1753 This sort of list is awesome, pleased to see people actively looking at and testing various tools. I would suggest though, if you are looking to SQL Injection testing tools, don't overlook the source code scanners, i.e. static source code analysers. While these need access to the source code to do the testing, the levels of accuracy and depth of findings are comparible if not better than blind application testing. Cheers This sort of list is awesome, pleased to see people actively looking at and testing various tools.

I would suggest though, if you are looking to SQL Injection testing tools, don’t overlook the source code scanners, i.e. static source code analysers. While these need access to the source code to do the testing, the levels of accuracy and depth of findings are comparible if not better than blind application testing.

Cheers

]]> By: Absinthe http://maestro-sec.com/blogs/2008/10/top-15-sql-injection-scanner/comment-page-1/#comment-363 Absinthe Mon, 16 Feb 2009 05:43:17 +0000 http://maestro-sec.com/blogs/?p=169#comment-363 I am very happy that I found your blog. Keep up the good work. I am very happy that I found your blog. Keep up the good work.

]]>