This is a nice tool by Hewlett-Packard you could use on .your. website to see if it’s vulnerable to SQL injection. It does not check forms so be aware - only URL input is checked.
You can find more in-depth information on the HP Security Labs site.
Well this is not a tool. This is THE Tool set, the only thing you will ever need during a penetration test (you dirty minds, you thought *that* penetration? nooo it’s just a security penetration, sorry).
Penetration testing can get tedious. Especially when you need to organize all this useful info bits you collect during your exploration - where would you put them? In a spreadsheet? Pretty ASCII text document?
Well, I personally prefer Leo.
It’s main difference from most text editors I’ve seen, is the tree structure of the information. Of course, it has LOADS of other features, and needs probably as much reading and learning as MS Project, but it’s worth it. Behind the ugly interface a great power is hidden, so explore it!
Try go get used with the keyboard shortcuts, like Ctrl+I, Ctrl+R etc. More…