http://matasanochargen.disqus.com/enThu, 03 Jul 2008 08:35:35 -0000http://www.matasano.com/log/1077/and-now-for-a-few-words-about-hps-scrawlr/#comment-2324181Well I ran the tool and passed on the (negative) results to our SO. His comment:<br><br>"If they can see all the tables in the database, can they read the data?"<br><br>What to say?johnThu, 03 Jul 2008 08:35:35 -0000http://www.matasano.com/log/1077/and-now-for-a-few-words-about-hps-scrawlr/#comment-2324184ha ha ha<br><br><a href="http://www.memestreams.net/users/acidus/blogid10328640/" rel="nofollow">http://www.memestreams.net/users/acidus/blogid1...</a>drrrSat, 28 Jun 2008 17:08:11 -0000http://www.matasano.com/log/1077/and-now-for-a-few-words-about-hps-scrawlr/#comment-2324183I just hope that the average admin/web-developer doesn't use this to scan their site and think it's "SQl injection free." You would hope they understand it's a very targeted, specific tool, but it might wind up giving them a false sense of security instead.send9Thu, 26 Jun 2008 21:26:46 -0000http://www.matasano.com/log/1077/and-now-for-a-few-words-about-hps-scrawlr/#comment-2324182At least they didn't say "upgrade to ASP.NET 3.5 and all your problems will go away".Andre GirondaThu, 26 Jun 2008 16:18:11 -0000