SQL injection and Scanning Tools

Hi all,

On a related topic, I wasn't able to make the last Security
SIG where scanning was discussed, but I wonder if the
Foundstone scanning product the campus uses has the
capability to scan  websites for SQL injection
vulnerabilities?

We did an evaluation recently of a product called Acunetix
Web Scanner http:/
/www.acunetix.com/vulnerability-scanner/ and I was very
impressed.  It found some issues with a few of our pages.

Tim
At 10:48 AM 4/4/2006, Ryan L. Means wrote:
>I was the presenter for that demonstration. If you would
like to send me the code sample that you are looking at,
I'd be happy to evaluate it for you. That goes for anyone
else too, within reason... ;) 


Tim Heidinger  <timhberkeley.edu>
University of California, Berkeley
Student Affairs             Phone: (510) 643-2596


------------------------------------------------------------
------------
The following was automatically added to this message by the
list server:

For information about Micronet, including subscribing to
or unsubscribing from its mailing list and finding out
about upcoming meetings, please visit the Micronet Web site:
<http://micronet.be
rkeley.edu/>.