最終更新:2011-03-15 (火) 10:59:38 (4781d)  

OWASP SQLiX
Top / OWASP SQLiX

http://www.owasp.org/index.php/Category:OWASP_SQLiX_Project

SQLiX, coded in Perl, is a SQL Injection scanner, able to crawl, detect SQL injection vectors, identify the back-end database and grab function call/UDF results (even execute system commands for MS-SQL). The concepts in use are different than the one used in other SQL injection scanners. SQLiX is able to find normal and blind SQL injection vectors and doesn't need to reverse engineer the original SQL request (using only function calls).

関連




検索: