1.Detection of SQL Injection and Cross-site Scripting Attacks
WebScarab
2.Fiddler
the previous is used more for security analysis and testing and the latter for debugging and troubleshooting.
3.some Vulnerability / Security Analysis to Fiddler through add-ins
http://msdn.microsoft.com/en-us/library/ms998364.aspx#paght000027_step2
4.Testing for SQL Injection with WebScarab
http://www.owasp.org/index.php/Testing_for_SQL_Injection_%28OWASP-DV-005%29
5.SQL Injection cheat sheet
http://ha.ckers.org/sqlinjection/
SQL Power Injector开发源代码下载及文档工具
http://www.sqlpowerinjector.com/download.htm
sqlmap开源工具及代码
http://sqlmap.sourceforge.net/
WEB安全检查工具
最新推荐文章于 2022-09-05 14:25:02 发布