VulnerabilityAssessment.co.uk

SQLPing2

SQLPing2 is the updated GUI version of SQLPing which also includes the ability to scan an IP range and perform brute forcing password cracking using a user defined dictionary against numerous user supplied account names..

SQLPing2 is available from here.

As you can see from the above I have scanned a single IP address with a supplied user and password list. This reports that the sa account has a password set to "password".

Note:- If you are targeting SQL7 you have to specify that SQLPing2 forces a check of port 1433 via the settings option at the top of the tool.

IT Security News:

Security boffins unveil BitUnlocker
Worries over "good worms" rise again
The Saga continues: Mujahedeen secrets - 2
Vulnerability count falls in 2007
Mozilla plugs critical flaws with Firefox patch
A rough 24 hours for Windows users - 81.01% affected
Russix is out
more........

Pen Testing Framework:

Pen Test Framework (html)
Source (FreeMind .mm format)
PDF (zip format)
Framework Poster available
Pre-site Template (html)
Pre-site Template (pdf)
Report Template (html)
Report Template (pdf)
Compliance Testing

Latest Tool Reviews:

firecat
creddump
goolag
dirbuster
fgdump password list
CTUpdate (WSUS Offline)
netwox
maltego
more

Information:
DNS Tools
Exploiting NFS
IT Threats
NTP Enumeration
Online Trace Route
Routing Registries
RSS Feed

Security boffins unveil BitUnlocker

DNS Tools

Exploiting NFS

© VulnerabilityAssessment.co.uk 24 February 2008