•        0

Code to protect .NET Web applications and services against sql injection and cross site scripting attacks.




comments powered by Disqus

Related Projects

OWASP Joomla Vulnerability Scanner Project

Detects file inclusion, sql injection, command execution vulnerabilities of a target Joomla! web site. A regularly-updated signature-based scanner that can detect file inclusion, sql injection, command execution, XSS, DOS, directory traversal vulnerabilities of a target Joomla! web site. It Searches known vulnerabilities of Joomla! and its components, Web application firewall detection and lot more.

Sqlmap - Automatic SQL injection and database takeover tool

sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lasting from database fingerprinting, over data fetching from the database, to accessing the underlying file system and executing commands on the operating system via out-of-band connections.

CakePHP - Rapid Development PHP framework

CakePHP makes building web applications simpler, faster and require less code. Its features include Database support, Application scaffolding, MVC architecture, Built-in validation, Data Sanitization, Flexible Caching, Localization, SQL injection prevention, Form tampering protection, Authentication and lot more.

w3af - Web Application Attack and Audit Framework

w3af is a Web Application Attack and Audit Framework. The project’s goal is to create a framework to help you secure your web applications by finding and exploiting all web application vulnerabilities. It can find Cross site scripting, SQL Injection and lot more. The framework implements web and proxy servers which are easy to integrate into your code in order to identify and exploit vulnerabilities.


Training and educating about the web security

OWASP Mantra - Security Framework

OWASP Mantra - Free and Open Source Browser based Security Framework, is a collection of free and open source tools integrated into a web browser, which can become handy for penetration testers, web application developers, security professionals etc.


sqlsus is an open source (My)SQL injection tool, written in perl. It focuses on speed and efficiency, optimising the available injection space. It provides an easy to use interface with lots of neat features. For more information, please visit http://sqlsus.sf.net

Zaproxy - An easy to use integrated penetration testing tool for finding vulnerabilities

The OWASP Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. It is designed to be used by people with a wide range of security experience and as such is ideal for developers and functional testers who are new to penetration testing as well as being a useful addition to an experienced pen testers toolbox.


OpenSource tool for sql injection security testing

Atomic Tanks

Atanks is a multi-platform Scorched Earth clone similar to the Worms series of games. Annihilate the other tanks to earn money, then spend it on bigger and better shields and weapons to wipe out the opposition.