Hi Team, we use asp.net application and MS SQL Server 2008 , how can i test my websites and datbases are safe or not how to test it? after googling i got this url http://www.microsoft.com/download/en/details.aspx?DisplayLang=en&id=16305but this on is for net application, and my application is A SP.Net
asked Jan 09 '12 at 08:48 PM in Default
Please go through this link I hope this could help you.
[http://www.microsoft.com/download/en/details.aspx?displaylang=en&id=19968]: h ttp://www.microsoft.com/download/en/details.aspx?displaylang=en&id=19968
answered Jan 09 '12 at 10:32 PM
On top of traditional firewalls there are now Web Application firewalls (WAF) available. Quite a few organizations are implementing these to secure their environment. As far as for the basic testing and good reads you can visit
http://weblogs.asp.net/scottgu/archive/2006/09/30/Tip_2F00_Trick_3A00_-Guard-Against-SQL-Injection-Attacks.aspx (This one have links to some quite good guidelines)
For some toolshttp://labs.securitycompass.com/exploit-me/