Re: database scanning tools

From: Thor (Hammer of God) (thor@hammerofgod.com)
Date: Thu Dec 15 2005 - 14:25:25 EST

• Next message: US Infosec: "Re: database scanning tools"
• Previous message: Richard Zaluski: "RE: database scanning tools"
• In reply to: Gus Fritschie: "database scanning tools"
• Next in thread: US Infosec: "Re: database scanning tools"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

The good money is on NGSSoftware... Dave does a *ton* of research in
database technologies and is really "the guy" in regard to finding
vulnerabilities. It makes really good sense to have the people finding all
the vulnerabilities be the same people you get your auditing tools from.
Though exploits are not made "public" until the vendor has fixed the problem
(or in Oracle's case, if they *ever* fix them), NGSSoftware updates their
engines immediately in order to keep their customers protected.

t

-----
"I may disapprove of what you say,
but I will defend to the death your
right to say it."

----- Original Message -----
From: "Gus Fritschie" <gfritschie@hotmail.com>
To: <pen-test@securityfocus.com>
Sent: Thursday, December 15, 2005 7:14 AM
Subject: database scanning tools

>I am looking to puchase a database vulnerability scanning tool for our
>company. I have used the tools from NGSSoftware in the past and have been
>pretty happy. But I wanted to see if there were other ones that you would
>recommend that I take a look at.
>
> Thnaks!
>
>
>
> ------------------------------------------------------------------------------
> Audit your website security with Acunetix Web Vulnerability Scanner:
> Hackers are concentrating their efforts on attacking applications on your
> website. Up to 75% of cyber attacks are launched on shopping carts, forms,
> login pages, dynamic content etc. Firewalls, SSL and locked-down servers
> are futile against web application hacking. Check your website for
> vulnerabilities to SQL injection, Cross site scripting and other web
> attacks before hackers do! Download Trial at:
>
> http://www.securityfocus.com/sponsor/pen-test_050831
> -------------------------------------------------------------------------------
>
>
>

------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:

Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------

• Next message: US Infosec: "Re: database scanning tools"
• Previous message: Richard Zaluski: "RE: database scanning tools"
• In reply to: Gus Fritschie: "database scanning tools"
• Next in thread: US Infosec: "Re: database scanning tools"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:16 EDT