DISQUS

Matasano Chargen: And Now For A Few Words About HP’s “Scrawlr”

  • Andre Gironda · 1 year ago
    At least they didn't say "upgrade to ASP.NET 3.5 and all your problems will go away".
  • send9 · 1 year ago
    I just hope that the average admin/web-developer doesn't use this to scan their site and think it's "SQl injection free." You would hope they understand it's a very targeted, specific tool, but it might wind up giving them a false sense of security instead.
  • drrr · 1 year ago
  • john · 1 year ago
    Well I ran the tool and passed on the (negative) results to our SO. His comment:

    "If they can see all the tables in the database, can they read the data?"

    What to say?