Call now: (800) 766-1884  



 Home


 SQL Server Tips
 SQL Server Training

 SQL Server Consulting
 SQL Server Support
 SQL Server Remote DBA



 Articles
 Services
 SQL Server Scripts
 Scripts Menu



 

 

 

   
  SQL Server Tips by Gama and Naughter


Security tools

 Many tools are available that can be used for auditing, monitoring or vulnerability testing (AKA benign hacking). Reputable security experts as well as anonymous hackers have developed tools for testing the defenses, by analyzing or trying to break SQL Server. Knowledge of both types of tools is important because a good defense must consider all possible scenarios.

 Here is a list of some utilities you may find helpful:

 * NGSSquirrel for SQL Server. This is a vulnerability assessment scanner. It scans SQL Servers for hundreds of possible security threats. (NGSS Software http://www.nextgenss.com)

* NGSSQLCrack. This is a Password auditing tool. It identifies user accounts with weak passwords that could be vulnerable to brute force attacks. (NGSS Software)

* NGSSniff. A Sniffer for SQL Server that sorts, parses and analyzes captured packets. (NGSS Software)

* SQLPing. Lists all SQL Servers running on a server or on an entire network. It provides additional info: instance name, version, clustering info, net-libs, and net-lib details. (www.sqlsecurity.com)

* SQLScan. Scans IP addresses looking for SQL Servers, with IP list to scan, optional dictionary file and optional installation of backdoor on vulnerable hosts. (www.securityfocus.com)

* SQLCracker and Sqldict, Dictionary password attack tools. SQLCracker is included in SQLTools, a famous set of SQL Server hacking tools. (http://packetstormsecurity.org)

* Sqlpoke. Scans IP addresses looking for SQL Servers with the default sa password. (http://packetstormsecurity.org)

* Sqlbf. A brute force password attack tool. (http://packetstormsecurity.org)


The above book excerpt is from:

Super SQL Server Systems
Turbocharge Database Performance with C++ External Procedures

ISBN: 0-9761573-2-2
Joseph Gama, P. J. Naughter

 http://www.rampant-books.com/book_2005_2_sql_server_external_procedures.htm
 

 

Burleson Consulting Remote DB Administration


 

 


 

 

 

 

 
Burleson is the America's Team

Note: The pages on this site were created as a support and training reference for use by our staff of DBA consultants.  If you find it confusing, please exit this page.

Errata?  SQL Server technology is changing and we strive to update our SQL Server support information.  If you find an error or have a suggestion for improving our content, we would appreciate your feedback.  Just  e-mail:and include the URL for the page.
 


Burleson Consulting
SQL Server database support

 

Copyright 1996 -  2013 by Vaaltech Web Services. All rights reserved.

Hit Counter