Today I uploaded a new video „Web Application Testing with Matrixay 2.5“ (1024×768). In this video I am using Matrixay to extract the structure of a database (tables, columns, …) via a SQL Injection vulnerability in one of my vulnerable test applications (Oracle 11.1.0.7 & PHP). After that I am downloading the content of the table.
Matrixay is a really good and easy to use commercial web scanner from DBAppSecurity Ltd.
Matrixay supports all kind of databases (Oracle, MSSQL, MySQL, DB2, …) and can even do simple database audit (e.g. check for weak Oracle passwords, …).
More videos can be found in our video section. I will add more in the next few weeks.