VP-ASP :: Shopping Cart Software

Shopping Cart Software Solutions for anywhere in the World

US/Canada(Toll Free): +1 888 587 2278
Europe/UK: +44 (020) 7193 9408
Australia/New Zealand: +61 3 9016 4497

VP-ASP Shopping Cart Customer Forum

Home | Profile | Register | Active Topics | Members | Search | FAQ
Username:
Password:
Save Password
Forgot your Password?

 All Forums
 VPCart Forum
 Credit card fraud and hackers
 SQL Injection Check Tool (freebie)
 New Topic  Reply to Topic
 Printer Friendly
Author Previous Topic Topic Next Topic  

devshb
Senior Member

United Kingdom
1898 Posts

Posted - May 08 2007 :  14:33:42  Show Profile  Visit devshb's Homepage  Reply with Quote
Here's a nice new tool, a must-have for all vpasp site-owners in my book, even if you're up to date on your patches it's still a nice safety net to have. Also, you might have been hacked ages ago without even knowing it (as some of the hacks won't physically be viewable on admin etc).

Freebie! -

VP-ASP (V4.5/V5/V5.5/V6/V6.5) SQL Injection Hack Finder:

http://www.bigyellowzone.com/shopexd.asp?id=146

This free tool will check every text-based column in every record in every table in your vpasp database, and it'll give you a list of candidates for what it thinks may have been injected data.

For the full thread on SQL Injections, have a look at our SQL Injection Blog Topics:
http://www.bigyellowzone.com/blog/?cat=20

This tool will display the candidate data in a safe way (ie so that the hacks themselves don't "execute" while the tool is displaying/finding the hacked text for your information).

It's a good way of seeing whether or not you generally have much hacked data before deciding whether or not you want to pay for a full check/fix service.

See also the following additional services:
BYZ Data Check/Fix:
http://www.bigyellowzone.com/shopexd.asp?id=144

BYZ Data Check/Fix with Patches:
http://www.bigyellowzone.com/shopexd.asp?id=145

Simon Barnaby
Developer
[email protected]
www.BigYellowZone.com
Web Design, Online Marketing and VPASP addons

devshb
Senior Member

United Kingdom
1898 Posts

Posted - May 10 2007 :  07:41:06  Show Profile  Visit devshb's Homepage  Reply with Quote
we've just released a new version of this freebie, see the latest posting on our sql-injection blog:
http://www.bigyellowzone.com/blog/?cat=20

Simon Barnaby
Developer
[email protected]
www.BigYellowZone.com
Web Design, Online Marketing and VPASP addons
Go to Top of Page

Alan F
VP-ASP New User

102 Posts

Posted - May 10 2007 :  11:41:48  Show Profile  Visit Alan F's Homepage  Reply with Quote
Hi All

I was privaled to be e-mailed this and ran it through my sites

Set up was easy and quick and the programme was quick and efficient

Cheers BYZ

Alan

Go to Top of Page
  Previous Topic Topic Next Topic  
 New Topic  Reply to Topic
 Printer Friendly
Jump To:
Snitz Forums 2000