Stumble it!
Is Your Site Free From SQL Injection?
Smashing Apps has been featured at Wordpress Showcase. If you like Smashing Apps and would like to share your love with us so you can click here to rate us.
SQL injection is a security exploit in which an attacker injects SQL parameters into a Web form, allowing him or her to send database queries and ultimately gain access. SQL injection is not a direct database problem but rather an application issue that indirectly affects your database systems. There are several web application vulnerability scanners to see if any input filtering or other SQL injection-specific holes exist.
SQLFury is the worlds first free online SQL Injection scanner. It is a developer tool written for the Adobe AIR runtime, this application performs SQL injection scans of a target website to identify any SQL injection vulnerabilities. SQLFury utilises blind or inband SQL injection techniques to identify vulnerable targets. If vulnerabilities are found options will be given to extract information from the database using the compromised parameter.
SQLFury works by appending your own SQL statements to a parameter which is not correctly sanitised on the server. Given a parameter with SQL injection vulnerablities SQLFury can extract, Database version, Current database user, database name, table names, columns names and entire columns.
Here are some key features of “SQLFury”:
Database Support:
• MySQL
• PostgreSQL
• Oracle
• Microsoft SQL Server
Extract from database:
• Database version.
• Current database user.
• All database users.
• Database name.
• All database names.
• All table names.
• All columns names.
• Entire columns.
Get SQLFury and test it to see for yourself just how useful it can be for you.
If you enjoyed this post, please consider to leave a comment or subscribe to the feed and get future articles delivered to your feed reader.
You May be Interested In More Interesting Free Resources
- How To Make Your Free Personal Wedding Websites
- Track Your Money Easily From Everywhere. Online Accounting For Real People - Moneytrackin'
- 21 Premium-Like Free Photoblog Themes For Wordpress
- 30+ Artistic Examples Of Colorful Wallpapers
- 11 Amazing Free Web Applications To Make Your Lives Easier
- 50+ Promising Collection Of Resources And Inspirations For Designers To Discover The Best Of The Web In April
- 21 Truly Impressive And Eye Catchy Collection Of Free Textures
- 43 Of The Extremely Creative Wonders Of Macro Photography
- 31 Most Colorful Collection Of High Quality Free Texture Packs
- Put Multiple Links Into One Short Link
Comments
The application could not be installed because the AIR file is damaged. Try obtaining a new AIR file from the application author.
Hm… this is why I don’t like Adobe AIR!
“The application could not be installed. Try installing it again. If the problem persists, contact the application author. Error #2032″
Been trying for a few days now. Anyone know how to get in touch with the author?
Cant get the file to install, also cant find a contact address for the author.
It’s a shame, the website looks good and the app looks promising.
The app seems to be broken “The application could not be installed because the AIR file is damaged. Try obtaining a new AIR file from the application author.”