Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 215
  • Last Modified:

tool for sql injection

my security report came back saying that 1 of my pages could be atacked by sql injection.  Is there agood test tool for free if possible?
0
Wigging
Asked:
Wigging
3 Solutions
 
WebDevEMCommented:
Hi Wigging,

You'd be amazed how often that happens and people don't know it until after they're hacked into... Most times it turns out to be something simple like executing a query based on text that either the user has entered or can be modified between the user and the page that will execute it.  

I used a tool called "Burp" to test a site a while back that my client had found vulnerabilities in.  There is a paid version which will actively search for issues, but the free version worked well for me when I knew what pages to focus on.  It's been a few years since I used it though, so I'm afraid I won't be able to offer any specific advice in the tool.

I hope this helps,

WebDevEM
0
 
CodeCruiserCommented:
You can make sure you do not use concatenation with your SQL queries and you will stop SQL injection.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now