Test website security


I intend to test my website against various types of threat, such as sql injection, is there any software tool to do this?

best regards
Who is Participating?
btanExec ConsultantCommented:
I would have thought you will do some hygiene check and SSLTest is one option as it surface the weakness in crypto SSL/TLS which may be easily exploited. You can have a check of health on known threat using VirusTotal too. Specifically for the scanner and tool, OWASP has some good listing hereTool such as sqlmap  for testing SQLi, another for the wider coverage of test cases is w3af. It is a Web Application Attack and Audit Framework. It does attempt to find and exploit known web application vulnerabilities.
Pawan KumarDatabase ExpertCommented:
There are few tools available in the market for this kind of requirement.

you can check for free tools present here-

Dr. KlahnPrincipal Software EngineerCommented:
Without wishing to seem flippant, no security tool is going to be either up to date or as effective in revealing problems as the real thing.  As soon as you connect the site to the internet this will all be done for you at no charge by black hats trying to break in.  Just watch the logs and defeat the exploits as they are used.

(This is good practice since you'll have to do it every day anyway as long as the site is on the internet.)

And be sure you have daily full backups.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.