Prevent Sql Injection Attacks

Xchangeboard is forum software based on PHP and MySQL. The project offers an easy way of administration to handle design and/or user-specific tasks. The look and feel resembles other well known boards. Whats New in This Release: - An issue has been fixed that allowed a user to conduct SQL...

ExploitMyUnion is written in Python and has a PyQt user interface. Here are some key features of "ExploitMyUnion": ?*A* Injection via GET/POST/COOKIE. ?*A* Quoted injections support. ?*A* HTTP proxy support. ?*A* SQL 'load_file()' function support. ?*A* SQL 'INTO OUTFILE' statement support....

Scrubbr is a BSD-licensed database scanning tool that checks numerous database technologies for the presence of possible stored cross-site scripting attacks. The tool was partially inspired by "Scrawlr", a trimmed-down version of HP's WebInspect which was released for free after the so-called...


Platforms: Mac

dotDefender Monitor for Apache is the only way to know who is attacking your web site in real time. Residing on the server as webserver plug-in, dotDefender can be installed and implemented in minutes without influence on traffic or network architecture. dotDefender Monitor provides plug-and-play...


Platforms: *nix

HttpSentry is a free IIS Filter to detect hacker attacks. It prevents common problems such as SQL injection, Directroy traversal and many more. it also supports URL rewrite and Server masking.


Platforms: Windows

Information can be stored in and retrieved from database table records mapped to objects with Persistent Objects for PHP.The different types of database table columns are abstracted with individual data type classes, which help preventing SQL injection security attacks.Persistent Objects for PHP...


Platforms: PHP

Blackhat Search Engine Optimization (SEO) is a growing problem that search engines are failing to combat. This Firefox add-on will prevent Blackhat SEO attacks.


Platforms: Mac

The goal of a vulnerability assessment system is to identify devices on your network that are open to known vulnerabilities. Vulnerabilities if often left undetected pose a serious security risk to enterprise systems and can leave your vital corporate data exposed to malicious attacks. For you it...


Platforms: Windows, *nix

TbsSQL is a PHP class for SQL abstraction. TbsSQLs goal of this tool is to reduce the code when working with SQL through PHP. The TbsSQL is available for the following databases: - MySQL - MySQLi - SQL-Server (via Ms-Odbc) - PostgreSQL (version 7.2 or higher) Example: $id = 29; $name =...


Platforms: *nix

eXlent2k7 is a CMS based on the most modern technologies (XHTML 1.1, CSS 2.1, PHP 5 objects, PDO, XML, DOM) with good security (CSRF protection, XSS prevention in template system, javascript can be disabled, SQL injection prevention in database class).


Platforms: PHP

Using a hash array, a user may escape or un-escape any string using any string.Also unescape it, or customize it for any database, or other application. It prevents(?) or lessens the likelyhood of SQL injection.


Platforms: PHP

Find out why BF Survey Basic is one of the most user friendly Joomla survey extensions available. Don't waste hours trying to figure out other complex extensions, download BF Survey Basic Trail* now and in minutes you will have a professional looking survey in your own Joomla environment.Simply...


Platforms: PHP

It forces users to enter their current passwords when trying to change them in the user edit form. This helps prevent possible XSS attacks.InstallationUnpack in your modules folder (usually '/sites/all/modules/')Enable under Administer > Site Building > Modules.


Platforms: PHP

Automated XSS scan of your Drupal website through Simpletest.This project is based on SimpleTest library which is developed to execute unit and browser testing of PHP code. SimpleTest is a framework for enabling automated code checking and has a browser component available which can simulate...


Platforms: PHP

Laudanum is a collection of injectable files, designed to be used in a pentest when SQL injection flaws are found and are in multiple languages for different environments.They provide functionality such as shell, DNS query, LDAP retrieval and others.


Platforms: Mac

Sheba offers SQL management for people that don't mind SQL. Motivation I can write SQL faster than I can figure out the various library and ORM abstraction layers. Writing SQL directly in code is pretty disgusting. So I stole an idea from the Axamol SQL Library and along with a couple updates...


Platforms: *nix

SpaceMonkey is a Web application auditing tool. It can detect bugs or security flaws without using a knowledge database. It uses fault injection technics ('fuzzing') in order to reveal the flaws (SQL injection, XSS, File inclusion, command execution ).


Platforms: *nix

Burp Proxy is an interactive HTTP/S proxy server for attacking and testing web applications. It operates as a man-in-the-middle between the end browser and the target web server, and allows the user to intercept, inspect and modify the raw traffic passing in both directions. The Burp Proxy...


Platforms: *nix

Matew provides a valid HTML/CSS generator for static image albums. Matew is a valid HTML/CSS generator for static image albums. It supports retrieving information from EXIF cameras and includes customizable options like character set encoding. Albums may contain sub-albums, and the appearance...


Platforms: *nix

Spike Proxy is an open source HTTP proxy for finding security flaws in web sites. SPIKE Proxy is part of the Spike Application Testing Suite and supports automated SQL injection detection, web site crawling, login form brute forcing, overflow detection, and directory traversal detection. To...


Platforms: *nix