Re: SQL injections and connections to a DB

From: Felipe Balbi (felipebalbi@yahoo.com)
Date: Wed Jul 13 2005 - 08:09:10 EDT

Next message: Mark Teicher: "Re: Pentest Letter of Achievement/Certificate"
Previous message: Cedric.Baechler@vtg.admin.ch: "RE: Windows privelege escalation?"
In reply to: Mike Tupker: "SQL injections and connections to a DB"
Next in thread: Dean H. Saxe: "Re: SQL injections and connections to a DB"
Reply: Dean H. Saxe: "Re: SQL injections and connections to a DB"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

I think nikto will serve your purposes.
It's a perl script used to test web servers, very
effective.

Felipe Balbi

--- Mike Tupker <mtupker@gmail.com> wrote:

> We have a IIS web server setup on our DMZ with a
> connection to our DB
> server which is running MS SQL server 7. Does anyone
> know of a program
> that will check the code in a web page for
> vulnerabilities such as SQL
> injections, overflows, or anything else that I might
> not be aware of?
> Basically, I would like to know if there is any way
> for someone to use
> the server on the DMZ to get to the DB server and
> cause damage.
>
>
>
> Thanks in advance,
>
> Mike Tupker
>

[]'s

Felipe Balbi
Cel: (92) 8127-0839
e-mail: felipebalbi@yahoo.com
felipebalbi@adarinfo.com.br

"Imagination is more important than knowledge."
Albert Einstein

__________________________________
Yahoo! Mail
Stay connected, organized, and protected. Take the tour:
http://tour.mail.yahoo.com/mailtour.html

Next message: Mark Teicher: "Re: Pentest Letter of Achievement/Certificate"
Previous message: Cedric.Baechler@vtg.admin.ch: "RE: Windows privelege escalation?"
In reply to: Mike Tupker: "SQL injections and connections to a DB"
Next in thread: Dean H. Saxe: "Re: SQL injections and connections to a DB"
Reply: Dean H. Saxe: "Re: SQL injections and connections to a DB"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:32 EDT