Scrawlr: a free Crawler + SQL Injector tool

Discussion in 'OT Technology' started by Peyomp, Jun 25, 2008.

  1. Peyomp

    Peyomp New Member

    Joined:
    Jan 11, 2002
    Messages:
    14,017
    Likes Received:
    0
    http://www.memestreams.net/users/acidus/blogid10328589

    Microsoft actually did something cool. They paid SPI Dynamics (now pwnt by HP) to make this tool, which crawls your website to look for SQL Injection vulnerabilities so you can fix them.

    Really cool tool, and really relevant to me as I just fixed a bunch of these last week.
     
  2. Limp_Brisket

    Limp_Brisket New Member

    Joined:
    Jan 2, 2006
    Messages:
    48,422
    Likes Received:
    0
    Location:
    Utah
    have you crawled offtopic yet?
     
  3. Peyomp

    Peyomp New Member

    Joined:
    Jan 11, 2002
    Messages:
    14,017
    Likes Received:
    0
    I haven't even downloaded it. Isn't it for windows?
     
  4. Nocera

    Nocera ...

    Joined:
    Aug 9, 2000
    Messages:
    1,307
    Likes Received:
    0
    Location:
    Long Island, NY
    It has a pretty severe limitation of not testing form submissions though. Login forms are often the most vulnerable since they are the only gateway to the rest of the application.
     

Share This Page