Category: SQL Injunction detection tools

Acunetix Web Vulnerability Scanner

Free Edition Features: Acunetix WVS automatically checks your web applications for XSS, SQL Injection & other vulnerabilities. Firewalls, SSL and locked-down servers are futile against web application hacking. Acunetix checks your web applications for coding errors that result in Cross Site Scripting vulnerabilities. Acunetix also checks for other vulnerabilities in popular web applications such as Joomla, …

Continue reading

Permanent link to this article: https://www.darknessgate.com/2012/07/23/acunetix-web-vulnerability-scanner/

WebScarab

WebScarab is a framework for analysing applications that communicate using the HTTP and HTTPS protocols. It is written in Java, and is thus portable to many platforms. WebScarab has several modes of operation, implemented by a number of plugins. In its most common usage, WebScarab operates as an intercepting proxy, allowing the operator to review …

Continue reading

Permanent link to this article: https://www.darknessgate.com/2012/07/23/webscarab/

Exploit-Me

Exploit-Me is a suite of Firefox web application security testing tools designed to be lightweight and easy to use. XSS-Me Cross-Site Scripting (XSS) is a common flaw found in todays web applications. XSS flaws can cause serious damage to a web application. Detecting XSS vulnerabilities early in the development process will help protect a web …

Continue reading

Permanent link to this article: https://www.darknessgate.com/2012/07/23/exploit-me/

Watcher: Web security testing tool and passive vulnerability scanner

Watcher is a Fiddleraddon which aims to assist penetration testers in passively finding Web-application vulnerabilities. The security field today has several good choices for HTTP proxies which assist auditors and pen-testers. We chose to implement this as a plugin for Fiddler which already provides the proxy framework for HTTP debugging. Some reasons to use Watcher …

Continue reading

Permanent link to this article: https://www.darknessgate.com/2012/07/21/watcher-web-security-testing-tool-and-passive-vulnerability-scanner/

Skipfish

Skipfish is an active web application security reconnaissance tool. It prepares an interactive sitemap for the targeted site by carrying out a recursive crawl and dictionary-based probes. The resulting map is then annotated with the output from a number of active (but hopefully non-disruptive) security checks. The final report generated by the tool is meant …

Continue reading

Permanent link to this article: https://www.darknessgate.com/2012/07/21/skipfish/

N-Stalker Web Application Security Scanner 2012 Free Edition

N-Stalker Web Application Security Scanner 2012 Free Edition provides a restricted set of free Web Security Assessment checks to enhance the overall security of your web server infrastructure, using the most complete web attack signature database available in the market – “N-Stealth Web Attack Signature Database”. The Free Edition holds a restricted set of security …

Continue reading

Permanent link to this article: https://www.darknessgate.com/2012/07/21/n-stalker-web-application-security-scanner-2012-free-edition/

Wapiti

Wapiti allows you to audit the security of your web applications. It performs “black-box” scans, i.e. it does not study the source code of the application but it will scan the webpages of the deployed webapp, looking for scripts and forms where it can inject data. Once it gets this list, Wapiti acts like a …

Continue reading

Permanent link to this article: https://www.darknessgate.com/2012/07/21/wapiti/

Websecurify

Websecurify is an advanced testing solution built to quickly and accurately identify web application security issues. Websecurify saves you time and money by automating a tiresome and very technical process used by experts to find scary security vulnerabilities. Download Websecurify Basic edition Windows OS only Download Websecurify Browser Extensions – free browser extensions available for …

Continue reading

Permanent link to this article: https://www.darknessgate.com/2012/07/21/websecurify/

Netsparker Community Edition

Netsparker Community Edition is a SQL Injection Scanner. It’s a free edition of our web vulnerability scanner for the community so you can start securing your website now. It’s user friendly, fast, smart and as always False-Positive-Free. It shares many features with professional edition. It can detect SQL Injection and XSS issues better than many …

Continue reading

Permanent link to this article: https://www.darknessgate.com/2012/07/21/netsparker-community-edition/