December 4, 2005A customer asked that we check out his intranet site, which was used by the company’s employees and customers. This was part of a larger security review, and though we’d not actually used SQL injection to penetrate a network before, we were pretty familiar with the general concepts. We were completely successful in this engagement, [...]
Posted in WhitePapers 
No Comments »
December 4, 2005Dear List,
I would like to know if there is any tutorial which describes sql injection in context of My Sql. I feel that the errors returned by mysql when performing a sql injection are less revealing then that returned by other DBs.
Thanks
404
- While it’s not DB specific, the paper “SQL Injection Attacks by Example”
by [...]
Posted in Q & A No Comments »
December 4, 2005Hi List,
Is there a way I can block the likes of limewire uploading (without
blocking d/l) at a network level preferably via a filter rule on the
router or server s/w in a home network environment.
The problem I have is ppl on the network forget to close limewire and
leave their machines on and of course this gobbles [...]
Posted in Q & A No Comments »
December 4, 2005I am looking for people to share there advise or any software that will
allow me to achieve the following.
I would like to do an SNMP walk over all of my Cisco devices, to get the
hardware and IOS version information.
With this information I would then like to audit each IOS version to see
– [...]
Posted in Q & A No Comments »
December 4, 2005———- Original Message ———————————-
From: Chris Merkel
Date: Tue, 29 Nov 2005 11:15:50 -0600
>
>> I tried
>> calling Microsoft and going through the automated process on
>> the phone, but it says my installation is invalid. Is there
>> any way around this (I am not trying to cheat Microsoft here)
>> or any way to speak to a [...]
Posted in Q & A No Comments »
December 4, 2005Can anyone tell me what they are using to crack/guess SQL Server
passwords? For Oracle I am using OPWG….but I don’t have a tool for SQL
Server. Any help would be great. Thanks, Roger
- SQLCRACK: http://www.ngssoftware.com/sqlcrack.htm
ForceSQL v2.0: http://www.nii.co.in/resources/tools.html#fsql
sqlbf: http://www.sqlsecurity.com/DesktopDefault.aspx?tabid=26
Posted in Q & A No Comments »
Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers,